Exposed NSA’s evil snooping

Good Guy

1

…for the world

Exposed internal secrets

BAAAAD Guy …for his organization

2

1

Xkeyscore

TAOPRISM

GCHQ *VictoryDance

http://projects.propublica.org/nsa-grid/

Hammerchant – Spy on VoIP & VPN

ANT catalog – Inject surveillance software in Apple cisco dell products

WellSpring – Collect images from email based on face recognition

DishFire – Collect upto 200million SMS a day

NoseySmurf – Smurf in iPhones & Android, turning on mic & track loc

Bullrun – NSA & GCHQ effort to weaken cryptography standards/tools

ShotGiant – program to break Chinese Huawei networks and products.

Upstream – program collects communications transiting the Internet

HappyFoot– use cookies & data from phone apps to identify users' devices and physical locations

http://projects.propublica.org/nsa-grid/

Alphabetical list of NSA Programs and Tools• A

AGILITY - NSA internet information tool or databaseAGILEVIEW - NSA internet information tool or databaseALPHA - SIGINT Exchange Designator for Great BritainANCHORY - NSA software system which provides web access to textual intelligence documentsAUTOSOURCE - NSA tool or databaseAQUACADE - A class of SIGINT spy satellites (formerly RHYOLITE)ASSOCIATION - NSA tool or database

• BBANYAN - NSA tool or databaseBELLTOPPER - NSA databaseBELLVIEW -BINOCULAR - Former NSA intelligence dissemination toolBLACKPEARL - NSA tool or databaseBLARNEY - NSA internet and telephony network collection programBOUNDLESS INFORMANT - DNI and DNR data visualization tool.BULLRUN BYEMAN (BYE) - Retired control system for overhead collection systems (1961-2005)

• CCADENCE - NSA collection tasking tool or databaseCANYON - Class of COMINT spy satellites (1968-1977)CANNON LIGHT - Counterintelligence database of the US ArmyCHESS- Compartment of TALENT KEYHOLE for the U-2 spy planeCONFIRM - NSA database for personell accessCONTRAOCTAVE - NSA tool or databaseCONVEYANCE - A voice content ingest processor? / Provide filtering for PRISM.CORONA - A series of photographic surveillance satellites (1959-1972)COURIERSKILL - NSA Collection mission systemCREST - Database which automatically translates foreign language intercepts in EnglishCRYPTO ENABLED - collection derived from AO's efforts to enable crypto (cf. lemonde.fr)CULTWEAVE - Smaller size SIGINT database *

• DDANCINGOASIS - (?)DELTA - Compartment for COMINT material from intercepts of Soviet military operationsDIKTER - SIGINT Exchange Designator for NorwayDINAR - Predecessor of the UMBRA compartment for COMINTDISHFIRE - NSA internet information tool or databaseDROPMIRE - passive collection of emanations using an antennaDRTBOX - DRUID - SIGINT Exchange Designator for third party countriesDYNAMO - SIGINT Exchange Designator for Denmark

• EECHELON - A SIGINT collection network run by Australia, Canada, New Zealand, the United Kingdom, and the United States, ECHO - SIGINT Exchange Designator for AustraliaEVILOLIVE -

• FFAIRVIEW - NSA internet and telephony network collection programFALLOUT - DNI metadata ingest processor / Provides filtering for PRISM.FISHBOWL - NSA program for securing commercial smartphonesFOREMAN - ?FOXACID - target the TOR's users

• GGMMA (G) - Compartment for highly sensitive communication interceptsGAMUT - NSA collection tasking tool or databaseGENIE - implants of spywaresGENTE - multi-stage opetation; jumping the airgap etc. (lemonde.fr - GLOBAL BROKER - NSA tool or database

• HHAVE BLUE - Development program of the F-117A Stealth fighter-bomberHAVE QUICK (HQ) - Frequency-hopping system used to protect military UHF radio trafficHERCULES - CIA terrorism databaseHIGHTIDE - NSA tool or databaseHIGHLANDS - spywares implants

• IINDIA - SIGINT Exchange Designator for New ZealandINTRUDER - Series of ELINT and COMINT spy satellites (since 2009)ISHTAR - SIGINT Exchange Designator for JapanIVY BELLS - NSA, CIA and Navy operation to place wire taps on Soviet underwater communication cables

• JJEROBOAM - Another name used for the TRUMPET spy satellitesJUGGERNAUT - Picks up all signals from mobile networksJUMPSEAT - Class of SIGINT reconnaissance satellites (1971-1983)

• KKLONDIKE (KDK) - Control system for sensitive geospatial intelligence

• L• LIFESAVER - imaging of the hard driver (from lemonde.fr

LITHIUM - ?LOPERS - Software application for Public Switched Telephone Networks

• MMAGIC LANTERN - A keystroke logging software developed by the FBIMAGNETIC - sensor collection of magnetic emanations (lemonde.fr)MAGNUM - Series of SIGINT spy satellites (since 1985)MAILORDER -MAIN CORE - Federal database of personal and financial data of suspicious US citizensMAINWAY - NSA database of bulk phone metadata (Call records DB)MARINA - NSA database of bulk internet metadata (Internet records DB)MENTOR - Class of SIGINT spy satellites (since 1995)MESSIAH - NSA automated message handling systemMETTLESOME - NSA Collection mission systemMINARET - A sister project to Project SHAMROCK (1967-1973)MINERALIZE - collection from LAN implant (lemonde.frMOONLIGHTPATH - An NSA collection programMORAY - Retired compartment for the least sensitive COMINT material

• NNUCLEON - Database for contents of phone calls (Voice data DB)

• OOAKSTAR - NSA internet and telephony network collection program, voir aussi "2013 mass surveillance disclosures".OCEAN - (?) from lemonde.fr.OCEANARIUM - Database for SIGINT from NSA and intelligence sharing partners around the world.OCELOT - Probably a NSA program for collection from internet and telephony networksOCTAVE - NSA tool for telephone network taskingOCTSKYWARD - NSA tool or databaseOSCAR - SIGINT Exchange Designator for the USA

• PPATHFINDER - SIGINT analysis tool (made by SAIC)PINWALE - Database for recorded signals intercepts/internet content (Video data DB)PLUS - NSA SIGINT production feedback program *PRISM - NSA collection program for foreign internet dataPROTON - Smaller size SIGINT databasePURPLE - Codename for a Japanese diplomatic cryptosystem during WWIIPUZZLECUBE - NSA tool or database

• QQUANTUM - see FOXACID - target the TOR's users,

• RRADON - host tap than can inject Ethernet packets onto the same target - exploitation of denied networks (cf. lemonde.fr)

• RAGTIME (RT) - Codeword for four NSA surveillance programs(Ragtime-A, B, C et P).RAMPART / RAMPART-T - penetration of hard targets at or near leadership levelRENOIR - NSA telephone network visualization toolRESERVE (RSV) - Control system for the National Reconnaissance Office (NRO)RICHTER - SIGINT Exchange Designator for GermanyRUFF - Compartment of TALENT KEYHOLE for IMINT satellitesRHYOLITE - Class of SIGINT spy satellites (in 1975 changed to AQUACADE)

• S• SABRE - Retired(?) SIGINT product codeword

SAVILLE - Narrow band voice encryption used for radio and telephone communicationSCISSOR SCORPIOFORE -SHARKFIN - Sweeps up all-source communications intelligence at high speed and volumesSEMESTER - NSA SIGINT reporting toolSENTINEL - NSA database security filterSETTEE- SIGINT Exchange Designator for South Korea

• SHAMROCK - Operation for intercepting telegraphic data going in or out the US (1945-1975)SHELLTRUMPET - NSA metadata processing programSILKWORTH - A software program used for the ECHELON systemSIRE - A software program used for the ECHELON systemSKYWRITER - NSA internet intelligence reporting toolSOLIS - SIGINT product databasesSPHINX - Counterintelligence database of the Defense Intelligence AgencySPINNERET - an NSA operational branche?SPOKE - Retired compartment for less sensitive COMINT materialSTELLARWIND (STLW) - SCI compartment for the President's Surveillance Program informationSTONE GHOST - DIA classified network for information exchange with UK, Canada and AustraliaSTORMBREW - NSA internet and telephony network collection programSTUMPCURSOR - Foreign computer accessing program of the NSA's Tailored Access Operations

• T• TALENT KEYHOLE (TK) - Control system for space-based collection

platformsTALK QUICK - An interim secure voice system created to satisfy urgent requirements imposed by conditions to Southeast Asia. Function was absorbed by AUTOSEVOCOMTAPERLAY - covername for Global Numbering Data Base (GNDB)?TAROTCARD - NSA tool or databaseTEMPEST - Investigations and studies of compromising electronic emanationsTHINTREAD - NSA program for wiretapping and sophisticated analysis of the resulting dataTRAFFICTHIEF - Part of the TURBULENCE and the PRISM programsTRAILBLAZER - NSA Program to analyze data carried on communications networksTREASUREMAP - NSA internet content visualization toolTRIBUTARY - NSA provided voice threat warning networkTRINE - Predecessor of the UMBRA compartment for COMINTTRUMPET - Series of ELINT reconnaissance satellites (1994-2008)TUNINGFORK - NSA tool or databaseTURBULENCE - NSA Program to detect threats in cyberspace (2005- )TURMOIL - Part of the TURBULENCE programTUSKATTIRE - DNR (telephony) ingest processorTUTELAGE - Part of the TURBULENCE program

• U• UMBRA - Retired compartment for the most sensitive COMINT material

UNIFORM - SIGINT Exchange Designator for CanadaUPSTREAM -

• VVAGRANT - computer screens / captures d'écrans [lemonde.fr](http://www.lemonde.fr/international/article/2013/10/22/la-diplomatie-francaise-sur-ecoute-aux-etats-unis35007173210.htmlVORTEX - Class of SIGINT spy satellites (1978-1989)

• WWEALTHYCLUSTER - Program to hunt down tips on terrorists in cyberspace (2002- )WEBCANDID - NSA tool or databaseWHITEBOX -

• XXCONCORD - Program for finding key words in foreign language documentsXKEYSCORE (XKS) - Program for analysing SIGINT traffic

• ZZARF - Compartment of TALENT KEYHOLE for ELINT satellites

“If everything is terrorism, then nothing is terrorism,”

- David Gomez, a former senior FBI agent.

2

INSIDER

THREAT

No more than 22 personnel at NSA were to have access to the highly classified data

- Michael Hayden, former director of the NSA and CIA,

“Does your organization have a way to detect unauthorized access to your data?”

“Does your organization uses and monitors the available

technology”