Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
3.9.3 Test Procedure
Step Execute Action Expected Results Req
1 NOTE: VPN Link is not supported through squid. NOTE:
VPN Link not supported on WRT54G v5.
(Flytrap Tester) From the Target Laptop, configure the
Flytrap’s Internet (WAN) Connection to DHCP (i.e., this
will disable squid).
Target Laptop should have internet
access and should no longer be
going thru the Squid Laptop (verify
on Squid Laptop access.log).
N/A
2 (CherryTree Tester) Assign Mission “FAT Test 9 (Flytrap
VPN Link Test)” to Flytrap (Assign -> Missions page). Be
sure to click the Assign button at the bottom of the page.
(CherryTree Tester) Verify Flytrap
has received new Mission at
expected time (“Flytrap Details”
page will report “Current Mission”
as the one just assigned).
6.1.1
6.1.2.1.2
6.1.2.2.1
6.1.6
6.1.7
6.2.1
6.2.4-5
6.2.7
6.3
3 (Flytrap Tester) Generate an email A – open Google or
Yahoo search page, type “abc1@def.com”.
(CherryTree Tester) Verify Email A
is received (ticker at bottom of page
should light up and View->As page
should show new entry with correct
info)
6.1.2.2
6.1.2.2.2
6.1.2.2.3
6.1.2.2.3.
1
6.1.2.2.3.
2
6.1.2.2.4
6.1.7
6.2.2
6.2.4
6.2.6
4 (CherryTree Tester) Ping the VPN Link IP Address (not
yet supported on WRT54G v5). Get the “VPN IP Address”
On “Flytrap Details” page. From the “VPN Link Terminal”
(see section 2.3), issue:
ping <VPN IP Address>
Note: Mission has 10 minute VPN Link timeout.
(CherryTree Tester) Verify
successful Flytrap ping.
6.1.2.2.12
6.1.2.2.13
5 (CherryTree Tester) Ping the Target Laptop. Go to “View
-> As” and check the “Client VPN IP” for the A generated
in this test – this is the <VPN IP Address of Target>.
Then, from “VPN Link Terminal”, issue:
ping <VPN IP Address of Target>
(CherryTree Tester) Verify
successful Target Laptop ping.
6.1.2.2.12
6.1.2.2.13
6 (Flytrap Tester) Start apache service on Target Laptop.
(CherryTree Tester) Port scan the Target Laptop. From
the “VPN Link Terminal”, issue:
nc –vvvn <VPN IP Addr of Target> 1-100
(CherryTree Tester) Verify
successful Target Laptop port scan
of apache service on port 80.
6.1.2.2.12
6.1.2.2.13
25