Remote Control System - Upgrade Proposal
RCS (Remote Control System) is a solution that supports investigations by actively and passively tapping
data and information from the devices targeted by the investigations. In fact, RCS anonymously creates,
sets and installs software agents that collect data and information, sending the results to the central
database to be decrypted and saved.
Galileo is powerful system.
Target license give you the possibility to infect computer and smart phones. Each device requires a
Target License in order to monitor and remotely control that device. As per your request we suggest that
you consider maximizing your current system without having to add more hardware. Your current system
can handle up to 200 normal Targets and their data. Please keep in mind that these are normal Targets. If
your target happens to have more data than the average your system will start to advise you that you are
reaching capacity. Your current system came with 25 Target license. We suggest you consider at lease
150 more Target Licenses and 25 more User Licenses. With the additional target license you will more
that likely need a larger monitoring group. The additional User Licenses will allow you to add more
administrators, technical and analyst to manage the additional data coming in. Our suggestion would be
the follow license additions and cost:
150
25
Target Licenses
Users
270,000.00 Euro
50,00.00 Euro
An important component that was no included in your purchase but it a very crucial device which has
been completely developed by our team is the Tactical Network Injector (TNI). Hacking Team’s TNI is a
portable hardware appliance for monitoring a target’s Internet traffic and inserting the RCS Agents over
their requested traffic. By using our patented streaming injection techniques and proprietary executable
melting technology the TNI can target and infect downloaded files or browsed web pages without giving
notice to the user. Once the data reaches the computer, it is infected.
Considering that two departments will share the RCS system, I suggest two TNI appliances. Each TNI
can be programed to the specific requirements of each department.
2
Tactical Network Injector (TNI)
70,000.00 Euro
-1-
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545
Remote Control System - Expansion
Expanding your Current system for nationwide application.
Database or Shard,
The Database is the core of the whole infrastructure: it stores all the Evidence collected from
the targets and performs all the business logic. RCS introduces an architecture that provides unmatched
scaling capabilities. Instead of scaling by switching to a more powerful, expensive server, scalability is
obtained by adding more, less powerful servers, called Shards, and making them work in parallel.
By adding Shards, you will be able to monitor more Targets and dramatically increase the speed and
storage capacity of your system: browsing the Evidence will be much faster, and you will be able to
collect more information and retain it, always available, for longer times. Every time you add a Shard,
the database automatically balances itself, distributing the data according to the new resources made
available. There is no need to perform a complicated maintenance it comes with autopilot.
A new “Set & Forget” backup system is integrated into the Database: choose what you want to backup, at
what time and where to store it, and the system does the rest. You can backup the full database make
selective backups of a single Operation, Target or Agent, or even backup only the essential data for
restoring, in less than 5 minutes, a perfectly operating copy of the system. Server sizing depends mainly
on the number of concurrent Devices monitored and the amount of Evidence stored. Our
recommendation, like mentioned before, is to have no more than 200 targets per database or shard. When
adding an additional shard it should be accompanied with an additional collector.
Collector
Collectors are the point of presence of RCS on the Internet, and the only way in for the Agents to contact the RCS
Backend. The main function of Collectors is receiving the Evidence from the Agents, and forwarding it to the
Database for further processing. Collectors are also in charge of updating the Agents’ components, including their
configuration, and sending them commands to perform special operations, like uninstallation. Agents communicate
with the Collectors using an encrypted and authenticated channel: no other component is capable of communicating
with the Agents, and security is guaranteed by using strong double-layer encryption. Agents need to reach the
Collector anywhere they are, to maximize communication capabilities and give you control over the devices even
when they’re on the other side of the world. At least one Collector is needed in order to receive data from the
Agents.
200
1
1
Target Licenses
Database/Shard License
Collector License
330,000.00 Euro
50,000.00 Euro
50,000.00 Euro
-2-
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545
Remote Control System - Crisis Center
In response to your request for a crisis center, we propose the following with RCS Correlation option.
The correlation option in conjunction with RCS would give you the possibility to take all data that is
arriving to the center and analyze the information. The idea of the correlation crisis center would be to
gather all data and look for anomalies. It will create digital identities, analyze target-to-target
communications and find anomalies that would otherwise take hours of analyst time and only if they new
what anomaly they are looking for. Crucial patterns will found making the data and information gathered
that much more effective. In addition to the correlation activities, the crisis center will be able to manage
urgent or important cases regardless of which RCS system is gathering the information. The diagram
below shows RCS installation being able to handle large amount of targets.
Agents
Collector 1
Collector 2
x 10000
…
Collector N
Database
Shard 1
Shard 2
…
-3-
Shard N
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545
Remote Control System - Crisis Center
In the illustration below you can see how several RSC locations can tie into a centralized network or
Crisis Center. In this case RCS 1 to RCS N, are feeding their collected data to the RCS Nationwide or
Crisis Center. The Crisis Center would require several server depending on how much data it will be
handling. For your case we are suggesting a center that can handle up to 600 targets data and
information.
x 1000000
Agents
RCS 1
Agents
…
Agents
RCS N
RCS NATION WIDE
-4-
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545
Commercial Proposal
REMOTE CONTROL SYSTEM
Description
Product Code
-5-
Price
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545
Terms & Conditions

Pricing includes taxes and delivery to Mexico City.

The warranty period for HT software products is one year starting from date of delivery.

Software will be delivered according to following activities:
1. Maintenance renewal
2. VPS
3. Exploit Package

Invoice & Terms of Payment:
Invoices will be issued at the delivery dates.

The payment will be issued within 20 natural days after invoice delivery, subject to Client
verification and approval, regarding activities.

Offer Validity: The quotation is valid for 80 natural day
-6-
STRICTLY CONFIDENTIAL
HT S.r.l.
Headquarters: Via della Moscova, 13 20121 Milano
Tel: +39.02.29060603 – Fax: +39.02.63118946
e-mail: [email protected] – web: http://www.hackingteam.it
P.IVA: 03924730967 – Capitale Sociale: € 223.572,00 i.v.
N° Reg. Imprese / CF 03924730967 – N° R.E.A. 1712545