References

Bibliographic references cited across the CWE and CAPEC catalogs

All CWE CAPEC
REF-713 CAPEC
The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies
Jordan Robertson, Michael Riley · 2018
2 citation(s)
REF-714 CAPEC
Operation Wilted Tulip: Exposing a cyber espionage apparatus
· 2017
1 citation(s)
REF-715 CAPEC
How To Secure Your Documents
Marie Prokopets
4 citation(s)
REF-716 CAPEC
Supply chain attacks
Daniel Simpson, Dani Halfin, Andrews Mariano Gorzelany, Beth Woodbury · 2021
3 citation(s)
REF-717 CAPEC
Disposing of Devices Safely
Linda Pesante, Christopher King, George Silowash · 2012
1 citation(s)
REF-718 CAPEC
Supply Chain Risks for Information and Communication Technology
· 2018
REF-719 CAPEC
Unverified Commits: Are You Unknowingly Trusting Attackers’ Code?
Aviad Gershon · 2022
1 citation(s)
REF-720 CAPEC
Hackers can spoof commit metadata to create false GitHub repositories
Deeba Ahmed · 2022
1 citation(s)
REF-721 CAPEC
StarJacking – Making Your New Open Source Package Popular in a Snap
Tzachi Zornstein · 2022
1 citation(s)
REF-722 CAPEC
Repo Jacking: Exploiting the Dependency Supply Chain
Indiana Moreau · 2020
1 citation(s)
REF-723 CAPEC
Alarm bells ring, the IoT is listening
Alex Scroxton · 2019
1 citation(s)
REF-724 CAPEC
Bad news: KeyWe Smart Lock is easily bypassed and can't be fixed
Matthew Hughes · 2019
1 citation(s)
REF-725 CAPEC
Zyxel Flaw Powers New Mirai IoT Botnet Strain
Brian Krebs · 2020
1 citation(s)
REF-726 CAPEC
Digital Age Organizations: Uncovering Over-the-Air Updates in the Smart Product Realm
Colin Schulz, Stefan Raff, Sebastian Kortmann, Nikolaus Obwegeser · 2021
1 citation(s)
REF-727 CAPEC
Language-Specific Registry Entries
1 citation(s)
REF-728 CAPEC
winnls.h header
1 citation(s)
REF-729 CAPEC
local (1p) - Linux Man Pages
1 citation(s)
REF-730 CAPEC
vconsole.conf
1 citation(s)
REF-731 CAPEC
timedatectl
1 citation(s)
REF-732 CAPEC
CyRC Vulnerability Analysis: Repo jacking in the software supply chain
Theo Burton · 2022
1 citation(s)
REF-733 CAPEC
Attacker Caught Hijacking Packages Using Multiple Techniques to Steal AWS Credentials
Jossef Harush · 2022
1 citation(s)
REF-734 CAPEC
GitHub RepoJacking Weakness Exploited in the Wild by Attackers
Jossef Harush · 2022
1 citation(s)
REF-735 CAPEC
LVI - Hijacking Transient Execution with Load Value Injection
Jo Van Bulck, Daniel Moghimi, Michael Schwarz, Moritz Lipp, Marina Minkin, Daniel Genkin, Yuval Yarom, Berk Sunar, Daniel Gruss, Frank Piessens
1 citation(s)
REF-736 CAPEC
Load Value Injection
· 2020
1 citation(s)
REF-737 CAPEC
DHCP Spoofing 101
Yuval Lazar · 2021
1 citation(s)
REF-738 CAPEC
DHCP Spoofing 101
T. Melsen, S. Blake, Ericsson · 2006
1 citation(s)
REF-739 CAPEC
DHCP Spoofing 101
Bosco Sebastian · 2019
1 citation(s)
REF-740 CAPEC
OilRig uses RGDoor IIS Backdoor on Targets in the Middle East
Robert Falcone · 2018
1 citation(s)
REF-741 CAPEC
STOLEN PENCIL Campaign Targets Academia
ASERT Team · 2018
1 citation(s)
REF-742 CAPEC
Managing a “Data Spill”
Florida Industrial Security Working Group (FISWG)
1 citation(s)
REF-743 CAPEC
data spillage
1 citation(s)
REF-744 CAPEC
TempestSDR: An SDR Tool For Eavesdropping on Computer Screens Via Unintentionally Radiated RF
1 citation(s)
REF-745 CAPEC
Exposing Computer Monitor Side-Channel Vulnerabilities with TempestSDR
Dan Maloney
1 citation(s)
REF-746 CAPEC
Russian State-Sponsored Cyber Actors Targeting Network Infrastructure Devices
CISA · 2018
1 citation(s)
REF-747 CAPEC
Browser-in-the-Middle (BitM) attack
Tommasi F., Catalano, C., Taurino I. · 2021
1 citation(s)
REF-748 CAPEC
Overview of the Test Access Port
Hewlett-Packard Journal · 1994
1 citation(s)
REF-749 CAPEC
Finding Faults with the Test Access Port (TAP)
· 2017
1 citation(s)
REF-750 CAPEC
Technical Guide to JTAG
1 citation(s)
REF-751 CAPEC
HTTP Flood Attack
1 citation(s)
REF-752 CAPEC
ATT&CK ICS
REF-1 CWE
CWE - Common Weakness Enumeration
NIST
REF-2 CWE
HttpOnly
OWASP
1 citation(s)
REF-3 CWE
Some Bad News and Some Good News
Michael Howard · 2002
1 citation(s)
REF-4 CWE
C is for cookie, H is for hacker - understanding HTTP only and Secure cookies
Troy Hunt · 2013
1 citation(s)
REF-5 CWE
Mitigating Cross-site Scripting With HTTP-only Cookies
Microsoft
1 citation(s)
REF-6 CWE
Seven Pernicious Kingdoms: A Taxonomy of Software Security Errors
Katrina Tsipenyuk, Brian Chess, Gary McGraw · 2005
69 citation(s)
REF-7 CWE
Writing Secure Code
Michael Howard, David LeBlanc · 2002
53 citation(s)
REF-8 CWE
The 2011 IDN Homograph Attack Mitigation Survey
Gregory Baatard, Peter Hannay · 2012
1 citation(s)
REF-9 CWE
A Catalog of Security Architecture Weaknesses.
Santos, J. C. S., Tarrit, K., Mirakhorli, M. · 2017
REF-10 CWE
Understanding Software Vulnerabilities Related to Architectural Security Tactics: An Empirical Investigation of Chromium, PHP and Thunderbird.
Santos, J. C. S., Peruma, A., Mirakhorli, M., Galster, M., Sejfia, A. · 2017
« 9 / 30 »