{
	"id": "37f22bfe-0721-46e2-919b-2851c61ff583",
	"created_at": "2026-04-06T00:21:50.036104Z",
	"updated_at": "2026-04-10T03:20:17.746961Z",
	"deleted_at": null,
	"sha1_hash": "760ab6d33b2cc93281ed1752307a8c079e659858",
	"title": "CAPEC-561: Windows Admin Shares with Stolen Credentials (Version 3.9)",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 39239,
	"plain_text": "CAPEC-561: Windows Admin Shares with Stolen Credentials\r\n(Version 3.9)\r\nArchived: 2026-04-05 15:56:14 UTC\r\nChildOf Standard Attack Pattern - A standard level attack pattern in CAPEC is focused on a specific\r\nmethodology or technique used in an attack. It is often seen as a singular piece of a fully executed attack. A\r\nstandard attack pattern is meant to provide sufficient details to understand the specific technique and how it\r\nattempts to accomplish a desired goal. A standard level attack pattern is a specific type of a more abstract meta\r\nlevel attack pattern.653Use of Known Operating System CredentialsCanFollow Detailed Attack Pattern - A\r\ndetailed level attack pattern in CAPEC provides a low level of detail, typically leveraging a specific technique and\r\ntargeting a specific technology, and expresses a complete execution flow. Detailed attack patterns are more\r\nspecific than meta attack patterns and standard attack patterns and often require a specific protection mechanism\r\nto mitigate actual attacks. A detailed level attack pattern often will leverage a number of different standard level\r\nattack patterns chained together to accomplish a goal.16Dictionary-based Password AttackCanFollow Standard\r\nAttack Pattern - A standard level attack pattern in CAPEC is focused on a specific methodology or technique used\r\nin an attack. It is often seen as a singular piece of a fully executed attack. A standard attack pattern is meant to\r\nprovide sufficient details to understand the specific technique and how it attempts to accomplish a desired goal. A\r\nstandard level attack pattern is a specific type of a more abstract meta level attack pattern.49Password Brute\r\nForcingCanFollow Standard Attack Pattern - A standard level attack pattern in CAPEC is focused on a specific\r\nmethodology or technique used in an attack. It is often seen as a singular piece of a fully executed attack. A\r\nstandard attack pattern is meant to provide sufficient details to understand the specific technique and how it\r\nattempts to accomplish a desired goal. A standard level attack pattern is a specific type of a more abstract meta\r\nlevel attack pattern.50Password Recovery ExploitationCanFollow Detailed Attack Pattern - A detailed level\r\nattack pattern in CAPEC provides a low level of detail, typically leveraging a specific technique and targeting a\r\nspecific technology, and expresses a complete execution flow. Detailed attack patterns are more specific than meta\r\nattack patterns and standard attack patterns and often require a specific protection mechanism to mitigate actual\r\nattacks. A detailed level attack pattern often will leverage a number of different standard level attack patterns\r\nchained together to accomplish a goal.55Rainbow Table Password CrackingCanFollow Detailed Attack Pattern -\r\nA detailed level attack pattern in CAPEC provides a low level of detail, typically leveraging a specific technique\r\nand targeting a specific technology, and expresses a complete execution flow. Detailed attack patterns are more\r\nspecific than meta attack patterns and standard attack patterns and often require a specific protection mechanism\r\nto mitigate actual attacks. A detailed level attack pattern often will leverage a number of different standard level\r\nattack patterns chained together to accomplish a goal.70Try Common or Default Usernames and\r\nPasswordsCanFollow Detailed Attack Pattern - A detailed level attack pattern in CAPEC provides a low level of\r\ndetail, typically leveraging a specific technique and targeting a specific technology, and expresses a complete\r\nexecution flow. Detailed attack patterns are more specific than meta attack patterns and standard attack patterns\r\nand often require a specific protection mechanism to mitigate actual attacks. A detailed level attack pattern often\r\nwill leverage a number of different standard level attack patterns chained together to accomplish a\r\ngoal.565Password SprayingCanFollow Detailed Attack Pattern - A detailed level attack pattern in CAPEC\r\nhttps://capec.mitre.org/data/definitions/561.html\r\nPage 1 of 2\n\nprovides a low level of detail, typically leveraging a specific technique and targeting a specific technology, and\r\nexpresses a complete execution flow. Detailed attack patterns are more specific than meta attack patterns and\r\nstandard attack patterns and often require a specific protection mechanism to mitigate actual attacks. A detailed\r\nlevel attack pattern often will leverage a number of different standard level attack patterns chained together to\r\naccomplish a goal.568Capture Credentials via KeyloggerCanFollow Detailed Attack Pattern - A detailed level\r\nattack pattern in CAPEC provides a low level of detail, typically leveraging a specific technique and targeting a\r\nspecific technology, and expresses a complete execution flow. Detailed attack patterns are more specific than meta\r\nattack patterns and standard attack patterns and often require a specific protection mechanism to mitigate actual\r\nattacks. A detailed level attack pattern often will leverage a number of different standard level attack patterns\r\nchained together to accomplish a goal.643Identify Shared Files/Directories on SystemCanPrecede Meta Attack\r\nPattern - A meta level attack pattern in CAPEC is a decidedly abstract characterization of a specific methodology\r\nor technique used in an attack. A meta attack pattern is often void of a specific technology or implementation and\r\nis meant to provide an understanding of a high level approach. A meta level attack pattern is a generalization of\r\nrelated group of standard level attack patterns. Meta level attack patterns are particularly useful for architecture\r\nand design level threat modeling exercises.151Identity SpoofingCanPrecede Meta Attack Pattern - A meta level\r\nattack pattern in CAPEC is a decidedly abstract characterization of a specific methodology or technique used in an\r\nattack. A meta attack pattern is often void of a specific technology or implementation and is meant to provide an\r\nunderstanding of a high level approach. A meta level attack pattern is a generalization of related group of standard\r\nlevel attack patterns. Meta level attack patterns are particularly useful for architecture and design level threat\r\nmodeling exercises.165File ManipulationCanPrecede Standard Attack Pattern - A standard level attack pattern in\r\nCAPEC is focused on a specific methodology or technique used in an attack. It is often seen as a singular piece of\r\na fully executed attack. A standard attack pattern is meant to provide sufficient details to understand the specific\r\ntechnique and how it attempts to accomplish a desired goal. A standard level attack pattern is a specific type of a\r\nmore abstract meta level attack pattern.545Pull Data from System ResourcesCanPrecede Meta Attack Pattern - A\r\nmeta level attack pattern in CAPEC is a decidedly abstract characterization of a specific methodology or technique\r\nused in an attack. A meta attack pattern is often void of a specific technology or implementation and is meant to\r\nprovide an understanding of a high level approach. A meta level attack pattern is a generalization of related group\r\nof standard level attack patterns. Meta level attack patterns are particularly useful for architecture and design level\r\nthreat modeling exercises.549Local Execution of Code\r\nSource: https://capec.mitre.org/data/definitions/561.html\r\nhttps://capec.mitre.org/data/definitions/561.html\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"MITRE"
	],
	"references": [
		"https://capec.mitre.org/data/definitions/561.html"
	],
	"report_names": [
		"561.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434910,
	"ts_updated_at": 1775791217,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/760ab6d33b2cc93281ed1752307a8c079e659858.pdf",
		"text": "https://archive.orkl.eu/760ab6d33b2cc93281ed1752307a8c079e659858.txt",
		"img": "https://archive.orkl.eu/760ab6d33b2cc93281ed1752307a8c079e659858.jpg"
	}
}