Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom Internal Test Procedures
Initial Setup:
• Connect the Control Computer to the internet
• Connect the Flytrap to the internet
• Connect the Client Computer (either via wire or wirelessly) to the Flytrap. If using
wireless, be sure to secure the Flytrap. Enable WPA (or WEP if that is all the
device supports). If possible, remove the antenna(s) from the Flytrap. Verify
connection via ping, telnet, and opening a browser to an internet site (e.g.,
slashdot.org).
5.1 CW Login Test
Description: Tests that the CW Login is functioning properly.
Setup: as in 4.4.
Run: Open IE the Control Computer, connect to CW
(https://zakura.com/CherryWeb), and login as cbuser. Logout and login as an
admin User.
Pass/Fail: the test passes if login succeeds and cbuser is directed to the
Overview page with no errors/exceptions, logout occurs correctly, and login as an
admin User occurs correctly.
5.2 CW Ticker Test
Description: Tests that the CW Ticker is functioning properly and displaying the
correct (UTC) time.
Setup: assumes 5.1
Run: View a few refreshes of the Ticker at the bottom of the page.
Pass/Fail: the test passes if the Ticker shows the most recent system Alert (over
all of cbuser’s Customers), and the UTC time displayed is correct (compare to
http://www.time.gov/timezone.cgi?UTC/s/0/java or similar).
5.3 CW Overview Test
Description: Tests that the CW Overview page works correctly.
Setup: assumes 5.1
Run: On the CW left menu pane, click the “Overview” link. Sort all columns of the
tables and page through the tables. Select and deselect the “Show Alerts for
Derived Targets” checkbox.
UNCLASSIFIED
50