Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//NOFORN
on EAST_5. Verify that sending traffic to other ports on EAST_3 does not
result in redirection.
Before proceeding, flush the PREROUTING chain in the “dpxvke8h18” table:
TARG_1# iptables -t dpxvke8h18 -F PREROUTING
6) Tool Removal
Remove the kernel module using rmmod:
TARG_1# rmmod nf_table
Then, look for evidence that the removal succeeded:
TARG_1# lsmod
TARG_1# iptables -t dpxvke8h18 -L -nv
Verify that “nf_table” does *not* appear in the output for lsmod. Verify that
the “iptables -L" command result in an error.
Finally, see if the table appears in “/proc/net/ip_tables_names”:
TARG_1# cat /proc/net/ip_tables_names
Verify that the “dpkvke8h18” table *still* is not present in the command
output.
SECRET//NOFORN

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh