Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.
SECRET//NOFORN
________________________________________________________________________
• The word 'overt' in a prompt for configuration information indicates the information will be
visible to a user logged on to the target machine. Care should be taken to ensure these values
are consistent with the operational CONOP.
• Configuration settings that can be modified when the implant is on target are indicated in the
prompt text.
8.1 (U) Usage
(S//NF) This section contains information for tasking an implant. Figure 16 (below) shows the
command line options for the Tasker.
Warning
(S//NF) Implant tasking may be completed on the low-side;
however, the operator should be aware that cryptographic key
data will be in the clear.
(S//NF) By default, the Tasker allows the Operator to interactively build tasking for an implant
or implant family. Alternatively, the operator can also input tasking via a scripted tasking file.
>python.exe tasker.py -h
usage: tasker.py [-h] [-r RECEIPT] [-s SCRIPT] [-g GENERATE] [-p PRIORITY]
[-x] [-e] [--id ID] [--debug]
Tasker Configuration
optional arguments:
-h, --help show this help message and exit
-r RECEIPT, --receipt RECEIPT
This argument defines an existing receipt filename to
be used for processing.
-i SCRIPT, --import SCRIPT
This argument provides the ability to import a script
for processing.
-g GENERATE, --generate GENERATE
This argument provides the output path location.
-p PRIORITY, --priority PRIORITY
This argument provides ability to set the
priority/ordering (0..255) NOTE: 128->default and
0->highest.
-x, --persist This argument provides ability to set the batch as a
persistent batch.
-e, --stoponerror This argument provides ability to stop the batch on a
command execution error.
--id ID This argument provides the ability to force a specific
initial task ID for a tasking session (usually just
used for debugging purposes - number is decoded as
hex).
--debug This argument allows debugging information to be
included in the output directory.
Figure 16 - (S//NF) Tasker Command Line Options
8.2 (U) Command Line Options
(S//NF) The Tasker has multiple command line options; however the tool may be invoked
without any command line options. The local directory will be used to output results.
SECRET//NOFORN 26