Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//20350112
Cherry Bomb Program x86 Flytrap User’s Manual
4 (U) Use Cases
(U) This section discusses common use cases of the x86 Flytrap.
4.1 (S) Simulate an AP
(S) The primary use case of the x86 Flytrap is to simulate and overpower an AP in a
region of interest. The x86 Flytrap platform minimizes suspicion because it is a COTS
laptop computer with COTS 802.11 hardware. An operative locates the x86 Flytrap in
close proximity to the AP. Optionally, the operative attaches an antenna to the x86
Flytrap to further overpower the AP. The operative configures the x86 Flytrap with the
same SSID as the AP, but with a different channel
a
. The stronger signal of the x86
Flytrap causes unwitting wireless clients to connect to the x86 Flytrap instead of the AP.
While connected to the x86 Flytrap, the wireless clients are vulnerable to typical Flytrap
exploitation. Figure 1 illustrates this use case.
(S) The x86 Flytrap needs a connection to the internet. In this use case, the x86 Flytrap
could wirelessly connect to the original AP and use it for internet connection. The x86
Flytrap could support other internet connection options as well, including other open
AP’s in the area, the wired ethernet interface (through, for example, a DSL modem), a
USB device (through, for example, a 3G/4G or WiMax USB stick), etc.
(U) For a detailed description of configuring and running the x86 Flytrap for this
scenario, see the “Quick Start Guide for x86 FT”, sections 4.1 (Wireless Repeater
(Bridge)) and 4.2 (Wireless Repeater (Router)).
a
(S) In some situations it may be feasible to operate the x86 Flytrap on the same channel as the AP.
Such a configuration is subject to interference and could cause significant degradation of the performance
of the wireless network. However, if the x86 Flytrap can significantly overpower the AP, then interference
problems may only exist in specific areas dependent on the relative locations and surrounding
environment of the AP and the x86 Flytrap.
SECRET//20350112
7