Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
on CB firmware. If you have tried to upgrade using the original
web page, and have gotten the error message "There is no new version of
firmware to upgrade", you will need to:
- See the CB User's Manual, section 12.7 "Firmware Upgrade Will ...".
2. IMPORTANT: when the device has come back up, manually power-cycle it again.
Testing has shown that an additional power-cycle after restoring the
original manufacturer's image results in better success of loading of the
wireless driver. This is also more similar to the operational scenario.
2a.IMPORTANT: wireless upgrade only works when wireless security is
disabled. Verify that wireless security is disabled, and if not,
disable it:
- Log on to the web page (as in step 1).
- Click the "Wireless" tab.
- Click the "Wireless security" tab.
- Set the "Security Mode" combo box to "disabled".
- Click the "Save Settings" button.
3. Disconnect the laptop's LAN cable, and wirelessly connect the laptop to the
device.
4. Verify connectivity of the wireless client and internet connectivity.
5. Next move on to the "OPERATIONAL PROCEDURES" section. When finished with
"OPERATIONAL PROCEDURES", return to step 6 in this section.
6. Verify a successful upgrade after the device has rebooted. After reboot,
reconnect your wireless client.
7. Login to CherryWeb (see CB User's Manual; requires a person logged into
a G terminal) and verify the device has beaconed. It should beacon at the
MM_INITIAL_BEACON_PERIOD_SEC parameter specified in
<HOME>/<PACKAGE>/flytrap.config.<SQSH_FILE>
plus 30 to 60 seconds for device boot/init time -- i.e., if
MM_INITIAL_BEACON_PERIOD_SEC has been specified as 60, then the device
should beacon after 90 - 120 seconds from the reboot event.
8. Firmware supports erasure of persistent data IF you upgrade from one
CB firmware to a different CB firmware. Note that, if a
device has CB firmware 'A' on it, then you upgrade to the manufacturer's
original firmware, and then upgrade again to CB firmware 'A', the
persistent data is NOT erased. If a device has CB firmware 'A' on it, then
you upgrade to the manufacturer's original firmware, and then you upgrade
to CB firmware 'B', the persistent data will be erased.
OPERATIONAL PROCEDURES:
The operator must be extremely familiar with the following procedure. Ideally,
the operator will have practiced many times on a test device.
0. It is assumed that the laptop is wirelessly connected to the Linksys
WRT300N v2 running original manufacturer's firmware 2.00.08. The operator
must know:
- The IP address of the Linksys WRT300N v2 (192.168.1.1 by default),
referred to hereafter as <DEVICE IP>. This is usually the
wireless client's default gateway.
- The IP address of the wireless client, referred to hereafter as
<WIRELESS CLIENT IP>. To get this address, from a cygwin shell run:
ipconfig /all
61