Resource Manipulation
Category ID: 262Status: Draft
+ Description

Summary

An attacker manipulates one or more resources, or some attribute thereof, in order to perform an attack. This is a broad class of attacks wherein the attacker is able to change some aspect of a resource's state and thereby affect application behavior or information integrity. Examples of resources include files, applications, libraries, infrastructure, and configuration information. Outcomes can range from vandalism and reduction in service to the execution of arbitrary code on the target machine.
+ Attack Prerequisites

All applications are potentially vulnerable to this class of attack as all applications rely on resources.

+ Resources Required

Attacker requirements will vary depending on the nature of the resource to be manipulated and the relationship between this resource and the targeted application, if any.

+ Relationships
NatureTypeIDNameDescriptionView(s) this relationship pertains toView\(s\)
ParentOfAttack PatternAttack Pattern31Accessing/Intercepting/Modifying HTTP Cookies 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern153Input Data Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern154Resource Location Attacks 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern161Infrastructure Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern165File Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern171Variable Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern176Configuration/Environment manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern257Abuse of transaction data strutcture 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern268Audit Log Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern269Registry Manipulation 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern271Schema Poisoning 
Mechanism of Attack (primary)1000
ParentOfAttack PatternAttack Pattern272Protocol Manipulation 
Mechanism of Attack (primary)1000
MemberOfViewView1000Mechanism of Attack 
Mechanism of Attack1000
Back to top