Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED
Cherry Bomb Program Cherry Blossom Internal Test Procedures
Pass/Fail: The test passes if status messages older than 1 week are automatically
discarded.
6 Extended/Periodic Time Tests
This section describes tests that should be run periodically to verify that the Cherry
Blossom system is robust against longer-term issues, such as resource usage,
database scalability, memory leaks, etc.
6.1 Quick Periodic Test
Description: a simple 5-10 minute system test that exercises a large percentage of
the system functionality.
Setup: plug a Flytrap into the internet and connect a Client Computer to the Flytrap.
Connect another computer to the internet (which will be used for CherryWeb
operation).
Run: Log in to CherryWeb, switching users on occasion. Then, either revise a Target
Deck or plan a new Mission (flip-flop one test to the next), also switching/changing
Customers on occasion. The Mission should have at least one copy action and one
redirect action, and should have Yahoo, hotmail, and maktoob email targets. Assign
this Mission to your Flytrap (or if you're editing a Target Deck in a Mission already
assigned to your Flytrap, the new Mission revision should already be assigned). Test
alerting on Yahoo, hotmail, and maktoob email targets by logging in to the
appropriate webmail sites. Test redirect action (alert on a target with a redirect action
and then go to a root page and it should redirect). Test copy action (alert on a target
with a copy action -- typically with a short timeout -- and check the copy data file for
that alert). On occasion, test other features like harvest, copy all, different beacon
parameters, etc.
Pass/Fail: passes if system operates as expected with no errors/exceptions.
6.2 System Logs Inspection
Description: periodic inspection of the Cherry Blossom system logs for errors.
Setup: ssh into zakura server (or work directly from the server).
Run: check the <CB>/CherryTree/Release/logs/CherryTree_error.log and tomcat
error log ($TOMCAT_HOME/logs/catalina.out).
Pass/Fail: passes if system logs report no serious errors.
UNCLASSIFIED
70