Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//20350112
9.11.11 (U) Step 11: Override Target Actions (Mission Workflow 4)
(S) On the “Target Exploit/Action Assignment” page of the Mission workflow (see
Figure 31), override any Actions (see 5.2.3.9) as appropriate.
(S) In general, Actions should rarely need to be overridden; prefer instead to edit the
Target Deck Actions directly (see 9.17) or create a different Target Deck with the
appropriate Actions (see 9.11.2).
(S) To enable a Copy Action (Copy, Copy VoIP, or Copy Call [VoIP targets only]), for a
particular target, click the Copy checkbox beside that target. Set a Copy Timeout value
(specify all zeros to copy indefinitely). For Windex, select the Windex URL from the
drop down box and then choose a Windex type (Double Iframe or Redirect).
Recommended Windex type is “Double Iframe”. For VPN Action (VPN Proxy or VPN
Link), select “VPN Proxy” to proxy that Target’s TCP and UDP traffic or select “VPN
Link” to establish a VPN Link between the CB-VPN and the Flytrap upon Target
detection. Set a VPN Action Timeout value (specify all zeros to perform the VPN action
indefinitely). If a VPN Action has been specified, select the VPN Server in the drop
down box at the bottom of the Target table.
Figure 31: Cherry Web Target Exploit/Action Assignment Mission Workflow Page
(S) Note that VPN Proxy and VPN Link Actions require an operational CB-VPN -- see
the “Cherry Blossom Installation Guide” for CB-VPN installation and configuration
81
SECRET//20350112