Security-Database integrates CAPEC v1.5

9 April 2010

Common Attack Pattern Enumeration and Classification (CAPEC) provides a a publicly available catalog of attack patterns along with a comprehensive schema and classification taxonomy. The CAPEC assists in enhancing security throughout the software development lifecycle, and to support the needs of developers, testers and educators

In an effort to remain compliant to security open standards, we’ve just updated our vulnerability database to reflect the latest changes made to the CAPEC catalog

Changes for the new release include:

24 new attack patterns,
34 existing attack patterns modified with enhanced material
1 attack pattern deprecated
1 new view added
CAPEC-View-333 - WASC Threat Classification 2.0

64 CAPEC-to-CWE mappings added
1 CAPEC-to-CAPEC mapping added
3 CAPEC-to-CAPEC mappings removed.

CAPEC catalog in Security-database

IT Vulnerability & Threats Dashboard v2.0 Beta with the updated catalog

Configurations checks	10 May 2010 : WebTest 1.2.1 - Testing Web Application with Python 1 May 2010 : Lansweeper v4.0 released 1 May 2010 : Sysinternal AccessChk v5.0 released 1 May 2010 : Spiceworks v4.7 build 50667 released 28 April 2010 : NSIA (Network System Integrity Analysis) v0.8.99 released
Metrics	9 April 2010 : Security-Database now mapping alerts with CWE/SANS Top 25 9 April 2010 : Security-Database integrates CAPEC v1.5 7 April 2010 : CWE/SANS Top 25 list updated to v1.0.3 29 March 2010 : Seccubus v1.4.1 released 1 March 2010 : Security-Database Vulnerability Dashboard updates

Facebook rss twitter linkedin mail

Security-Database integrates CAPEC v1.5

Related Articles

Follow us

Like us !

Most Read

Advertising

License

Categories

COMPANY

STANDARDS

RECENT POSTS

MENU