OutlawCountry Wikileaks Vault7 Cia Linux Hacking Tool Breakdown and Removal
OutlawCountry Wikileaks Vault7 Cia Linux Hacking Tool Breakdown and Removal
Here we talk about OutlawCountry a wikileaks CIA Linux hacking tool. It's a nasty piece of software that could really do some damage to your privacy. It seems to be simple enough to remove it you just need to grep for hidden files that are used by the system.
June 29th 2017, WikiLeaks publishes documents from the OutlawCountry project of the CIA that targets computers running the Linux operating system. OutlawCountry allows for the redirection of all outbound network traffic on the target computer to CIA controlled machines for ex- and infiltration purposes. The malware consists of a kernel module that creates a hidden netfilter table on a Linux target; with knowledge of the table name, an operator can create rules that take precedence over existing netfilter/iptables rules and are concealed from an user or even system administrator.
The installation and persistence method of the malware is not described in detail in the document; an operator will have to rely on the available CIA exploits and backdoors to inject the kernel module into a target operating system. OutlawCountry v1.0 contains one kernel module for 64-bit CentOS/RHEL 6.x; this module will only work with default kernels. Also, OutlawCountry v1.0 only supports adding covert DNAT rules to the PREROUTING chain.
https://wikileaks.org/vault7/#OutlawCountry
User Manuals
https://wikileaks.org/vault7/document/OutlawCountry_v1_0_User_Manual/OutlawCountry_v1_0_User_Manual.pdf
https://wikileaks.org/vault7/document/OutlawCountry_v1_0_Test_Plan/OutlawCountry_v1_0_Test_Plan.pdf
Important contribution.
Resharing @phibetaiota
Keep up the good work.
~The Management
You got it!
Ha ha... I was just watching your video on this when it popped up on my Steemit feed.
Nice! I try to keep them close together!
Congratulations! Great contribution :)