Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//NOFORN
System Architecture Switchblade
2 System Architecture
The following diagram shows a typical Switchblade networking environment.
Beacons from implanted hosts are assigned a beacon router having a cover domain name. Beacon
routers are connected to the Switchblade proxy through VPN tunnels to provide security and privacy.
Each beacon router / domain has its own dedicated interface and address on the Switchblade. A beacon
arriving at a beacon router is routed to the Switchblade which authenticates the implant client's
certificate. Authenticated beacon packets are then routed on to the Honeycomb tool-handler; all others
are routed to a cover server corresponding to the domain of the beacon router. The configuration of
Switchblade and its peer components allows the egress source address of beacon to be maintained
through to the tool-handler or cover server for logging purposes.
2 SECRET//NOFORN//20390430

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh