CAPEC - Common Attack Pattern Enumeration and Classification (CAPEC™)


CAPEC Common Attack Pattern Enumeration and Classification A Community Resource for Identifying and Understanding Attacks	New to CAPEC? Start Here

Understanding how the adversary operates is essential to effective cybersecurity. CAPEC™ helps by providing a comprehensive dictionary of known patterns of attack employed by adversaries to exploit known weaknesses in cyber-enabled capabilities. It can be used by analysts, developers, testers, and educators to advance community understanding and enhance defenses.

CAPEC List Quick Access
Search CAPEC View CAPEC Total Attack Patterns: 559

New to CAPEC

New to CAPEC?

Common Attack Pattern Enumerations and Classifications (CAPEC™) can be overwhelming to someone new to cyber-attack patterns. This page offers tips on how to familiarize yourself with what CAPEC has to offer, before more fully exploring this extensive knowledge base.

Community Engagement

If you would like to be a part of ongoing discussions related to MITRE’s work in shifting the balance of cybersecurity risk, please visit the Common Weakness Enumeration (CWE™) website.

CAPEC News
News Thank You for Responding to the CAPEC Stakeholder Community Survey News CAPEC List Version 3.9 Now Available Blog Community Actively Working to Enhance CWE’s ICS/OT Coverage Podcast "Using CWE/CAPEC in Education" More >>

More information is available — Please select a different filter.

Page Last Updated or Reviewed: July 06, 2023


MITRE	Site Map \| Terms of Use \| Manage Cookies \| Cookie Notice \| Privacy Policy \| Contact Us \| CAPEC on Twitter CAPEC on LinkedIn CAPEC on YouTube CAPEC Out-of-Bounds-Read Podcast CAPEC Blog on Medium Use of the Common Attack Pattern Enumeration and Classification (CAPEC), and the associated references from this website are subject to the Terms of Use. Copyright © 2007–2025, The MITRE Corporation. CAPEC and the CAPEC logo are trademarks of The MITRE Corporation.	HSSEDI