Vault 7: Projects

This publication series is about specific projects related to the Vault 7 main publication.

SECRET//ORCON//NOFORN
date
Date-Time or Date for time check, specified in ISO 8601 format
Required if time_check is not set to no_check
Date-Time: yyyy-mm-ddThh:mm:ss
Date: yyyy-mm-dd
offset
Byte offset into files to begin collection (default = 0)
“Get from <x> bytes into file.”
bytes
Number of bytes to collect from files (default = 0,all)
“Get <x> bytes from file.”
delete_file <run_mode> <r_file>
Delete a file from the target.
run_mode
Code specifying the run mode, represented by combining the
following keys:
‘r’ - run the task on receipt
‘s’ - run the task on every Implant startup
‘p’ - push the task results to the LP immediately
r_file
Remote file to delete
delete_secure <run_mode> <r_file>
Securely delete a file from the target.
The file is overwritten with zeroes before being removed from the target file
system.
run_mode
Code specifying the run mode, represented by combining the
following keys:
‘r’ - run the task on receipt
‘s’ - run the task on every Implant startup
‘p’ - push the task results to the LP immediately
r_file
Remote file to securely delete
98
SECRET//ORCON//NOFORN

e-Highlighter

Click to send permalink to address bar, or right-click to copy permalink.

Un-highlight all Un-highlight selectionu Highlight selectionh