Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED//LES
UNCLASSIFIED//LES Page7
4 USERSTORIES
Thissectiondefinestheusersstoriesofthekeystakeholders.UsecaseswillbederivedfromtheseUser
Storiesandwillbeprovidedas ti cketsintheprojecttrackingsoftw areTrac,availableathttp://p2p‐
dev01.dev.net/trac/Fulcrum
Theuserstoriesarerankedbycriticalityusingthefollowingscale:
1. Critical
2. High
3. Medi um
4. Low
4.1 USER
4.1.1.1 HTTPTRAFFICINJECTIONVIAPIVOTMACHINE
Importance:1‐Critical
Asauser,Iwanttodirectaspecificmachine (i.e.targetmachine)onaLANtoaspecificwebURLusing
anothermachineonthesameLAN(i.e.pivotmachine)byinjecti ngintotheHTTPcommunicationstream
ofthetargetwithouttheowner/operatorofeithermachinehavinganyknowledgeofit.
4.1.2 TARGETING
4.1.2.1 TARGETMACHINEIDENTIFICATION
Importance:1‐Critical
Asauser,IwanttheabilitytospecifywhichmachineontheLANtotargetinamannerthati scannotbe
confusedwithanyothermachine.
4.1.2.2 CORRECTLANVERIFICATION
Importance:1‐Critical
Asauser,Ineedtheapplicationtoautomaticallyensurethatthepivotmachineisonthecorrect
networkbeforeitproceedswithexecution.
4.1.2.3 DETERMININGIFTHETARGETISONLINE
Importance:2‐High
Asauser,Ineedtohavetheapplicationautomaticallydetermineifthetargetmachineisonlinebefore
proceedingwithexecutionofthetechnique.
4.1.2.4 WHENTHETARGETGOESOFFLINE