Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

1. HTTP request and response inspection and domain lookup (already have kernel level functions
for HTTP request and response inspection)
or
Including destination IP (port optional) in packet before sending over local interface or over
NETLINK. If forwarding multiple connections from gf, local interface is preferred.
2. SSL support (many libs available, we need to choose a small footprint one that is portable to
most Fts)
- use libtomnet ... not mature enough...
- netcat SSL patch... good example of patch to netcat that adds SSL support:
patch_netcat_ssl-20040224.diff, based on OpenSSL support
#include <openssl/err.h>
#include <openssl/x509v3.h>
-see
http://xyssl.org/docs/ for alternative SSL impl.s, e.g.: peersec 50K
3. wxpx app communication IO with gf:
- wxpx notify ready (after starting from signal to mm from gf after target acquisition)
wxpx notify success/failure (we could restrict gf to only forward one connection per client
until success)

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh