Difference between revisions of "Category:Internet attacker"

From OWASP
Jump to: navigation, search
(Related Threats)
(Reverting to last version not containing links to www.textlibocdronlib.com)
 
(10 intermediate revisions by 7 users not shown)
Line 3: Line 3:
 
==Description==
 
==Description==
  
An Internet attacker is someone whose only access to an application is via the Internet. They do not have an account or any relationship with the business.
+
An Internet attacker is someone whose only access to an application is via the Internet. They may or may not have an account or any relationship with the business.
  
They may try various approaches, including direct attacks, attacks on users of the system, email spamming, phishing, and more.
+
They may try various approaches, including direct attacks, attacks on users of the system, email spamming, phishing, and many more.
  
 
Internet attackers can be assumed to have a wide variety of skills and motivations. Surely there are some who have a high level of skill in attacking applications, significant time to search for vulnerabilities, and financial motivation to do so.
 
Internet attackers can be assumed to have a wide variety of skills and motivations. Surely there are some who have a high level of skill in attacking applications, significant time to search for vulnerabilities, and financial motivation to do so.
Line 13: Line 13:
 
* Script kiddies
 
* Script kiddies
 
* Professional attacker
 
* Professional attacker
 +
* Hackers and Crackers (Hackers/ Crackers Group)
  
 
==Related Threats==
 
==Related Threats==
  
 
* [[:Category:Intranet attacker]]
 
* [[:Category:Intranet attacker]]
 +
 +
Staff
 +
Contractors
 +
Operational and Maintenance Staff
 +
Security Guards
 +
Other Employees who are annoyed with the company
  
 
==Related Attacks==
 
==Related Attacks==
Line 23: Line 30:
 
* [[Phishing]]
 
* [[Phishing]]
 
* [[Brute force attack]]
 
* [[Brute force attack]]
 
+
* [[Social Engineering]]
[[Category:Attack]]
+

Latest revision as of 13:29, 27 May 2009

This is a threat agent. To view all threat agents, please go to Threat Agent Category page.

Description

An Internet attacker is someone whose only access to an application is via the Internet. They may or may not have an account or any relationship with the business.

They may try various approaches, including direct attacks, attacks on users of the system, email spamming, phishing, and many more.

Internet attackers can be assumed to have a wide variety of skills and motivations. Surely there are some who have a high level of skill in attacking applications, significant time to search for vulnerabilities, and financial motivation to do so.

Examples

  • Script kiddies
  • Professional attacker
  • Hackers and Crackers (Hackers/ Crackers Group)

Related Threats

Staff Contractors Operational and Maintenance Staff Security Guards Other Employees who are annoyed with the company

Related Attacks

This category currently contains no pages or media.