CAPEC-307

Detailed Abstraction Level
Meta — Very abstract, high-level category
Standard — Specific enough to understand
Detailed — Tied to specific technique
Stable MITRE CAPEC Status
Stable — Fully reviewed and complete
Draft — Under development
Incomplete — Partially defined
Deprecated — No longer recommended
Obsolete — Replaced by another CAPEC
Severity: Low
TCP RPC Scan

Description

An adversary scans for RPC services listing on a Unix/Linux host.

Prerequisites

RPC scanning requires no special privileges when it is performed via a native system utility.

Mitigations

Typically, an IDS/IPS system is very effective against this type of attack.