CAPEC Category 225 - Exploitation of Authentication

An attacker actively targets exploitation of weaknesses, limitations and assumptions in the mechanisms a target utilizes to manage identity and authentication. Such exploitation can lead to the complete subversion of any trust the target system may have in the identity of any entity with which it interacts. Weaknesses targeted by these sorts of attacks are often due to assumptions and overconfidence in the strength or rigor of the implemented authentication mechanisms.

VIEW 1000 Mechanisms of Attack

  • Meta Attack Pattern
  • Standard Attack Pattern
  • Detailed Attack Pattern