Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
UNCLASSIFIED//LES
UNCLASSIFIED//LES Page8
Importance:3‐Medium
Asauser,Ineedtheapplicationtopauseexecutionofthetechniqueandwaitforthetargetmachineto
comeonlineagainifthetargetgoesofflineduringexecution.
4.1.3 TRAFFICINJECTIONCRITERIA
4.1.3.1 USERAGENTSTRINGALLOWLIST
Importance:3‐Medium
Asauser,Iwanttospecifywhen atargetcanbedirectedtotheURLbasedontheuseragentstringof
thetargetmachinesHTTPcommunicationstream.
4.1.3.2 USERAGENTSTRINGDISALLOWLIST
Importance:3‐Medium
Asauser,IwanttheabilitytospecifywhenatargetcannotbedirectedtotheURLbasedontheuser
agentstringofthetargetmachinesHTTPcommunicationstrea m
4.1.3.3 CONTENTTYPE
Importance:2‐High
Asauser,IneedtheabilitytospecifywhenatargetcanbedirectedtotheURLbasedoncontenttype
(e.g.text/html,image/jpeg)thatthetargetmachineisexpectingandcanhandle.
4.1.4 TRAFFICINJECTION
4.1.4.1 URLSPECIFICATION
Importance:1‐Critical
Asauser,IneedtospecifywhatwebURLthetargetmachineshouldbedirectedtobytheapplication.
4.1.4.2 META‐REFRESHMETHOD
Importance:2‐High
Asauser,Ineedtheabilitytoinject trafficusingtheHTMLmeta‐refreshmethodwithauser
configurablerefreshtimeinterval.
4.1.4.3 HTMLFRAMEMETHOD
Importance:2‐High
Asauser,Ineedtheabilitytoinject trafficusingHTMLframeswhereinjectedURLscontentappe arsin
oneframeandthecontentrequestedbytheuserappearsinaseparateframe.
4.1.5 APPLICATIONEXECUTION