High-risk tools in Defcon
6 of the 20 tools in Defcon are classified as high risk. This page profiles those tools specifically, with recommended policy actions and the attack patterns that target them.
Every operation listed below is an action PolicyLayer recommends controlling at the transport layer. Open any tool to see the full profile, risk score, and YAML policy snippet.
Tools at high risk
-
launch-nukeExecuteLaunches a nuclear missile from a specified silo to target coordinates. IMPORTANT: Check the response to verify if launch was successful!
-
move-fleetExecuteMoves all ships in a fleet to the specified coordinates. IMPORTANT: Check the response to verify if the command was successful!
-
send-voteExecuteSends a vote for a game event
-
set-air-landingExecuteSets the landing target for an air unit
-
set-air-targetExecuteSets the target for an air unit (bomber or fighter)
-
set-submarine-stateExecuteSets the state of a submarine (passive sonar, active sonar, or nuke)
Attacks that target this class
High-risk tools in any server share these documented attack patterns. Each links to the full case and the defensive policy.