FakeIKEd 0.0.4
Sponsored Links
FakeIKEd 0.0.4 Ranking & Summary
File size:
0.10 MB
Platform:
Any Platform
License:
BSD License
Price:
Downloads:
1407
Date added:
2005-12-21
Publisher:
Daniel Roethlisberger
FakeIKEd 0.0.4 description
Fiked is a fake IKE daemon that supports just enough of the standards and Cisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN setups in what could be described as a semi-MitM attack.
Basically, knowing the pre-shared key, also known as shared secret or group password, the VPN gateway can be impersonated in IKE phase 1, in order to learn XAUTH user credentials in phase 2.
The configuration supported by fiked is IKE aggressive mode using pre-shared keys and XAUTH. FakeIKEd supports algorithms like DES, 3DES, AES128, AES192, AES256, MD5, SHA1, and DH groups 1, 2, and 5. Main mode is not supported.
Basically, if you know the pre-shared key, also known as shared secret or group password, you can play Man in the Middle, impersonate the VPN gateway in IKE phase 1, and learn XAUTH user credentials in phase 2.
This attack is not new. It has been known for a long time that IKE using PSK with XAUTH is insecure, and this is not the first actual implementation of the attack.
To successfully demostrate an attack on a VPN site, you need to know the shared secret, and you must be able to intercept the IKE traffic between the clients and the VPN gateway.
There are several ways to find out the shared secret, including being a legitimate user, grabbing it from some Cisco config file, using ike-crack, or layer 8 hackery.
There are also several ways to redirect the IKE traffic to your running fiked instance, including ARP spoofing, 802.11 hostap, or layer 1 hackery.
Usage:
Usage: fiked [-rdqhV] -g gateway -k id:psk [-k ...] [-l file] [-L file]
-r use raw socket: forge source address to match < gateway >
-d detach from tty and run as a daemon (implies -q)
-q be quiet, dont write anything to stdout
-h print help and exit
-V print version and exit
-g gw VPN gateway address to impersonate
-k i:k pre-shared key aka. group password, shared secret, prefixed
with its group/key id (first -k sets default)
-l file append results to credential log file
-L file verbous logging to file instead of stdout
Enhancements:
- Bugfixes, portability changes, and support for dropping privileges.
Basically, knowing the pre-shared key, also known as shared secret or group password, the VPN gateway can be impersonated in IKE phase 1, in order to learn XAUTH user credentials in phase 2.
The configuration supported by fiked is IKE aggressive mode using pre-shared keys and XAUTH. FakeIKEd supports algorithms like DES, 3DES, AES128, AES192, AES256, MD5, SHA1, and DH groups 1, 2, and 5. Main mode is not supported.
Basically, if you know the pre-shared key, also known as shared secret or group password, you can play Man in the Middle, impersonate the VPN gateway in IKE phase 1, and learn XAUTH user credentials in phase 2.
This attack is not new. It has been known for a long time that IKE using PSK with XAUTH is insecure, and this is not the first actual implementation of the attack.
To successfully demostrate an attack on a VPN site, you need to know the shared secret, and you must be able to intercept the IKE traffic between the clients and the VPN gateway.
There are several ways to find out the shared secret, including being a legitimate user, grabbing it from some Cisco config file, using ike-crack, or layer 8 hackery.
There are also several ways to redirect the IKE traffic to your running fiked instance, including ARP spoofing, 802.11 hostap, or layer 1 hackery.
Usage:
Usage: fiked [-rdqhV] -g gateway -k id:psk [-k ...] [-l file] [-L file]
-r use raw socket: forge source address to match < gateway >
-d detach from tty and run as a daemon (implies -q)
-q be quiet, dont write anything to stdout
-h print help and exit
-V print version and exit
-g gw VPN gateway address to impersonate
-k i:k pre-shared key aka. group password, shared secret, prefixed
with its group/key id (first -k sets default)
-l file append results to credential log file
-L file verbous logging to file instead of stdout
Enhancements:
- Bugfixes, portability changes, and support for dropping privileges.
FakeIKEd 0.0.4 Screenshot
FakeIKEd 0.0.4 Keywords
IKE
FakeIKEd
VPN
XAUTH
FakeIKEd 0.0.4
Shared secret
Just Enough
fiked
cisco
file
secret
shared
supports
FakeIKEd 0.0.4
Security
Miscellaneous
Bookmark FakeIKEd 0.0.4
FakeIKEd 0.0.4 Copyright
WareSeeker periodically updates pricing and software information of FakeIKEd 0.0.4 full version from the publisher, so some information may be slightly out-of-date. You should confirm all information before relying on it. Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future development of FakeIKEd 0.0.4 Edition. Download links are directly from our publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
Featured Software
Want to place your software product here?
Please contact us for consideration.
Contact WareSeeker.com
Related Information
shared secrets
cisco vpn client
shared secret authentication
radius shared secret
fikeden
shared secret key
using default bipp shared secret
fixed gear
shared secret value must not be blank
cisco foods
wpa shared secret
cisco vpn
shared secretary
cisco networking academy
filedonkey
shared secret is incorrect
cisco ip phone
shared secret data
Related Software
Agnix project is an embedded real-time network operating system kernel. Free Download
Nibbles project is a Nibbles/Snake clone for ncurses. Free Download
GAdminSquid application is a C/GTK+ graphical user interface for the Squid proxy server. Free Download
InterXim is an international X11 XIM server. Free Download
jirsa is an application to ease the life of the role-playing game master. Free Download
PCSpk project is a set of command line applications for easily playing sounds and melodies. Free Download
Shmplayer executes a single instance of mplayer in the background and controls it through a FIFO. Free Download
Acme::Scripticide is a Perl extension to allow your script to kill itself. Free Download
Latest Software
Popular Software
Favourite Software
