| CAPEC | Related Weakness |
| Reverse Engineering |
| CWE-259 | Use of Hard-coded Password |
| CWE-798 | Use of Hard-coded Credentials |
|
| Software Reverse Engineering |
| CWE-259 | Use of Hard-coded Password |
| CWE-798 | Use of Hard-coded Credentials |
|
| Reverse Engineer an Executable to Expose Assumed Hidden Functionality or Content |
| CWE-259 | Use of Hard-coded Password |
| CWE-798 | Use of Hard-coded Credentials |
|
| Read Sensitive Strings Within an Executable |
| CWE-259 | Use of Hard-coded Password |
| CWE-798 | Use of Hard-coded Credentials |
|
| Protocol Reverse Engineering |
| CWE-259 | Use of Hard-coded Password |
| CWE-798 | Use of Hard-coded Credentials |
|
| Try Common(default) Usernames and Passwords |
| CWE-262 | Not Using Password Aging |
| CWE-263 | Password Aging with Long Expiration |
| CWE-521 | Weak Password Requirements |
| CWE-693 | Protection Mechanism Failure |
| CWE-798 | Use of Hard-coded Credentials |
|
