Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom Internal Test Procedures
Table of Contents
1 Introduction...................................................................................................................................7
1.1 Purpose.......................................................................................................................................7
1.2 Program Overview.....................................................................................................................7
1.3 Points of Contact........................................................................................................................8
1.4 Applicable Documents...............................................................................................................8
1.5 Conventions...............................................................................................................................9
1.6 Prerequisites...............................................................................................................................9
1.7 Test Types..................................................................................................................................9
2 Unit Tests....................................................................................................................................10
2.1 CherryTree/Web Unit Tests.....................................................................................................10
2.2 Flytrap Unit Tests....................................................................................................................10
2.3 Flytrap Device Unit Tests........................................................................................................10
3 Automated System Tests.............................................................................................................12
3.1 Generic Filter Test...................................................................................................................12
3.2 Memory and File Descriptor Leaks Test ...............................................................................13
4 Flytrap Tests................................................................................................................................14
4.1 Beacon Tests............................................................................................................................14
4.1.1 Initial Beacon (IB) Period Test........................................................................................15
4.1.2 IB Traffic Requirement Test............................................................................................16
4.1.3 IB Fast/Slow Retry Test...................................................................................................16
4.1.4 IB Traffic Requirement Timeout Test.............................................................................17
4.1.5 IB Internet Connectivity Test...........................................................................................17
4.1.6 IB Suicide Time Test.......................................................................................................17
4.1.7 Power-Cycle Beacon Test................................................................................................18
4.1.8 Periodic Beacon (PB) Interval Test.................................................................................18
4.1.9 PB Traffic Requirement Test...........................................................................................19
4.1.10 PB Traffic Requirement Timeout Test...........................................................................19
4.1.11 PB Internet Connectivity Test.........................................................................................19
4.1.12 PB Fast/Slow Retry Test.................................................................................................20
4.1.13 Overnight PB Test...........................................................................................................20
4.1.14 PB Suicide Time Test.....................................................................................................21
4.1.15 Date Change Immunity Test...........................................................................................21
4.1.16 Ontime Consistency Through Power-Cycles Test..........................................................21
4.2 Flytrap Features.......................................................................................................................22
4.2.1 Email/Chat Target Detection/Alerting Test.....................................................................22
4.2.2 MAC Target Detection/Alerting Test..............................................................................24
4.2.3 Beacon Status and Security Settings Test.......................................................................25
4.2.4 Alert Caching Test...........................................................................................................25
4.2.5 Target Monitoring Test....................................................................................................26
4.2.6 Redirect Action Test........................................................................................................26
4.2.7 Double IFrame Action Test.............................................................................................26
4.2.8 Copy Action Test.............................................................................................................27
4.2.9 Derived MAC Detection/Alerting Test.............................................................................28
4.2.10 Email/Chat Target Action Inheritance Test....................................................................28
UNCLASSIFIED
3