Common Attack Pattern Enumeration and Classification

{{refimprove|date=April 2022}}

{{Short description|Framework for describing and categorizing cyberattacks}}

The Common Attack Pattern Enumeration and Classification or CAPEC is a catalog of known cyber security attack patterns{{Cite journal |last1=Kanakogi |first1=Kenta |last2=Washizaki |first2=Hironori |last3=Fukazawa |first3=Yoshiaki |last4=Ogata |first4=Shinpei |last5=Okubo |first5=Takao |last6=Kato |first6=Takehisa |last7=Kanuka |first7=Hideyuki |last8=Hazeyama |first8=Atsuo |last9=Yoshioka |first9=Nobukazu |date=2022-03-27 |title=Comparative Evaluation of NLP-Based Approaches for Linking CAPEC Attack Patterns from CVE Vulnerability Information |journal=Applied Sciences |language=en |volume=12 |issue=7 |pages=3400 |doi=10.3390/app12073400 |issn=2076-3417|doi-access=free }} to be used by cyber security professionals to prevent attacks.{{Cite web |title=fnCyber™ Go Cyber Resilient Enterprise Cyber Security Consulting & Solutions |url=https://www.fncyber.com/web-of-trust-article/understand-common-attack-patterns |access-date=2022-04-27 |website=www.fncyber.com |language=en}}

Originally released in 2007 by the United States Department of Homeland Security, the project began as an initiative of the Office of Cybersecurity and Communication, and it is now supported by Mitre Corporation and governed under a board of corporate representatives.{{Cite web | url=https://capec.mitre.org/about/index.html | title=CAPEC - About CAPEC }}