Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom FAT Procedures
3.22Test 22: CB v5.0 Mobile VPN
3.22.1 Description
This test verifies the Mobile VPN capability.
3.22.2 Test Setup
Assumes the CB Mobile VPN software has been installed on an I-Term and the I-Term has
a known public IP address.
3.22.3 Test Procedure
Step
Execute Action
Expected Results Req
1 (Cherry Tree Tester) On the Cherry Web
menu pane, navigate to “PlanTarget
Decks” page. Create a Target Deck
containing email Target abc5@def.com.
Assign a VPN Proxy Action with a 10
minute timeout to the Target. Navigate to
the “PlanMissions” page and create a
Mission with a short (60 second) beacon
period and no traffic requirement. Add the
Target Deck to the Mission, and assign it
to the Flytrap.
(CherryTree Tester) Navigate
to “ViewMissions” and verify
that the Target appears with
the appropriate Action. Verify
Flytrap has received new
Mission at expected time
(“Flytrap Details” page will
report “Current Mission” as the
one just assigned).
CB v5.0
4.1.3
2 (Flytrap Tester) Generate an email Alert –
open Google or Yahoo search page, type
“abc5@def.com”.
(CherryTree Tester) Verify
Email Alert is received (ticker
at bottom of page should light
up and View->Alerts page
should show new entry with
correct info)
CB v5.0
4.1.3
3 (CherryTree Tester) Ping the Target
Laptop. Go to “View -> Alerts” and check
the “Client VPN IP” for the Alert generated
in this test – this is the <VPN IP Address
of Target>. Then, from the “VPN Link
Terminal”, issue:
ping <VPN IP Address of Target>
Note: Mission has 10 minute VPN Proxy
timeout.
(CherryTree Tester) Verify
successful Target Laptop ping.
CB v5.0
4.1.3
UNCLASSIFIED
50