Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//NOFORN Gyrfalcon 2.0
3 (U) System Requirements
3.1 (U) Target Platforms
(S//NF) The target platform must be running the Linux operating system with either 32- or 64-bit kernel
and libraries. Gyrfalcon consists of two compiled binaries that should be uploaded to the target
platform along with the encrypted configuration file. Also, Gyrfalcon requires the following libraries to
be installed on the target platform which are usually installed by default.
1. libpthread.so.0 or better (pthreads – multithreading)
2. libz.so.1 or better (zlib – compression)
3. libcrypt.so.1 or better (crypt – MD5 hashing)
4. libcrypto.so.4 or better (OpenSSL 0.9.7a – AES-256-CBC and RSA-2048)
3.2 (U) Local Operator Computer
(S//NF) Gyrfalcon consists of two Python scripts that should be kept on the local operator computer
(also considered the high side). These scripts require the following system requirements:
1 . (U) Any recent version of a standard Linux distribution
1.1 Preferably with 64-bit kernel and libraries.
2 . (U) Python 2.6 or better
3 . (U) SWIG
3.1 (U) If this package is not installed on the local operator computer, then the source code
can be downloaded from http://www.swig.org/, or use the Linux distribution's package
manager to install the SWIG package.
3.2 (U) To install from source code, follow these steps:
3.2.1 tar zxvf swig-2.0.9.tar.gz (if version 2.0.9 is downloaded)
3.2.2 cd swig-2.0.9
3.2.3 ./configure
3.2.4 make
3.2.5 (as root) make install
4 . (U) M2Crypto
4.1 (U) If this package is not installed on the local operator computer, then the source code
can be downloaded from http://chandlerproject.org/Projects/MeTooCrypto, or use the Linux
distribution's package manager to install the M2Crypto package.
4.2 (U) To install from source code, follow these steps:
4.2.1 tar zxvf M2Crypto-0.21.1.tar.gz (if version 0.21.1 is downloaded)
4.2.2 cd M2Crypto-0.21.1
4.2.3 python setup.py build
4.2.4 (as root) python setup.py install
2 SECRET//NOFORN//20381126 November 2013