Vault 7 leak – Year 0 release

A new leak from wikileaks expose CIA usage of tools and techniques to spy on citizens.

What I will be writing about in these article speaks about Year 0 release (March 2017).

You can access it here:

Please note that all source code were removed from the release to avoid massive tool proliferation.

Wikileaks speaks about CIA losing control over the “majority of its hacking arsenal “, I hope for them it is not the case (or at least not in what was disclosed here) because most of the exploits are already patched (and for some of them since many years).

Let’s have a deeper look at what is inside this release and link to what interested me (work still in progress, volume is huge).

Smartphone targeting

Android 4.4.4 max, but does it means you are safe with a newer version? nope, I’m sure they have newer tools that have not leaked yet.

All android details:


SmartTV targeting

Samsung smart TV were targetted by an attack called “Weeping angels” co-developped with british MI5.

Require physical access to the device and create a new mode: “TV seems in standy but micro is recording and sending every data to a CIA server”

OS targeting


Simple DLL injection: It shows that windows UAC might be of some use  despite its annoying popup 🙂

Other DLL inkection: PSP (antivirus) might detect it

Skip win8 activation:


List of shellcode exploit they have in stock:

Most exploit code are now available on websites such as:


Apple airport and time capsule:


CIA even has its own Visual Studio wizard: EDG project wizard


The were interested in lots of other topics, you can browse and read freely.

Hacking team leak:

Posted in News Tagged with: , ,

Leave a Reply

Your email address will not be published. Required fields are marked *