Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
5.11.3 (U) Step 3: Define Windex (Browser Redirect) and VPN Link/Proxy Exploits
(S) This step defines the Windex URL’s to which Targets can be directed, and the VPN
Servers (CB-VPN) for VPN Proxy and VPN Link actions (see CBUM).
(S) To add a Windex URL, click the “Plan Exploits Windex” menu link (see Figure
18). Enter a unique name for the Windex URL and the Windex URL into the “New
Windex URL” edit boxes. Next, click the “Create” button, and CW will validate your
entry. Note that the name can include letters and numbers and the URL should be fully-
qualified, including the protocol (e.g., http://www.abc.def.com). Additionally, names that
are different in case only are not considered unique. CW will prompt the user to re-enter
if there are any errors; otherwise, the new Windex URL will appear in the URL list at the
bottom of the page. Continue this process until all Windex URLs have been entered
properly.
Figure 18: Cherry Web Plan Exploits Windex Page
(S) To rename a Windex entry, click the “Plan Exploits Windex” menu link (see
Figure 18). Then click the “edit name” link immediately following the desired Windex
entry. This will open an edit page with the current Windex name already entered in the
“Windex Name” field. Update the Windex name as desired and click “Save” to commit
the change or “Back” to cancel. CW will validate the entry and prompt the user if there
are any errors. Once the name has been successfully changed, click “Back” to return to
the Windex entry page. Note that the URL cannot be changed.
28
Plan
Exploits
Windex