About:
Fiked is a fake IKE daemon that supports just enough of the standards and Cisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN setups in what could be described as a semi-MitM attack. Basically, knowing the pre-shared key, also known as shared secret or group password, the VPN gateway can be impersonated in IKE phase 1, in order to learn XAUTH user credentials in phase 2. The configuration supported by fiked is IKE aggressive mode using pre-shared keys and XAUTH. Supported algorithms are DES, 3DES, AES128, AES192, AES256, MD5, SHA1, and DH groups 1, 2, and 5. Main mode is not supported.

Author:
Daniel Roethlisberger [contact developer]

Rating:	reset 1 2 3 4 5 6 7 8 9 10
(not rated)

Homepage:
http://www.roe.ch/FakeIKEd
Tar/BZ2:
http://dragon.roe.ch/bitsnpieces/fiked/fiked-0.0.4.tar.bz2
BSD Ports URL:
http://www.freshports.org/security/fiked

Trove categories: [change]

[Development Status]		4 - Beta
[Environment]		Console (Text Based), No Input/Output (Daemon)
[License]		OSI Approved :: GNU General Public License (GPL)
[Network Environment]		IP :: IPv4
[Operating System]		POSIX, POSIX :: BSD, POSIX :: BSD :: FreeBSD, POSIX :: BSD :: OpenBSD, POSIX :: Linux
[Programming Language]		C
[Topic]		Security, Security :: Cryptography

Dependencies: [change]
Libgcrypt (required)
[download links]

 Branches

Branch	Version	Last release	License	URLs
Default	0.0.4	21-Dec-2005	GNU General Public License (GPL)