CAPEC-116: Excavation

Description

An adversary actively probes the target in a manner that is designed to solicit information that could be leveraged for malicious purposes.

Extended Description

This is achieved by exploring the target via ordinary interactions for the purpose of gathering intelligence about the target, or by sending data that is syntactically invalid or non-standard in an attempt to produce a response that contains the desired data. As a result of these interactions, the adversary is able to obtain information from the target that aids the attacker in making inferences about its security, configuration, or potential vulnerabilities. Examplar exchanges with the target may trigger unhandled exceptions or verbose error messages that reveal information like stack traces, configuration information, path information, or database design. This type of attack also includes the manipulation of query strings in a URI to produce invalid SQL queries, or by trying alternative path values in the hope that the server will return useful information.

Severity :

Medium

Possibility :

High

Type :

Relationships with other CAPECs

This table shows the other attack patterns and high level categories that are related to this attack pattern.

CAPEC-54: Query System for Information Query System for Information CAPEC-150: Collect Data from Common Resource Locations Collect Data from Common Resource Locations CAPEC-163: Spear Phishing Spear Phishing CAPEC-545: Pull Data from System Resources Pull Data from System Resources CAPEC-569: Collect Data as Provided by Users Collect Data as Provided by Users CAPEC-675: Retrieve Data from Decommissioned Devices Retrieve Data from Decommissioned Devices

Prerequisites

This table shows the other attack patterns and high level categories that are related to this attack pattern.

An adversary requires some way of interacting with the system.

Skills required

This table shows the other attack patterns and high level categories that are related to this attack pattern.

Taxonomy mappings

Mappings to ATT&CK, OWASP and other frameworks.

Resources required

A tool, such as an Adversary in the Middle (CAPEC-94) Proxy or a fuzzer, that is capable of generating and injecting custom inputs to be used in the attack.

Related CWE

A Related Weakness relationship associates a weakness with this attack pattern. Each association implies a weakness that must exist for a given attack to be successful.

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CWE-1243: Sensitive Non-Volatile Information Not Protected During Debug

Visit http://capec.mitre.org/ for more details.