FakeIKEd v0.0.5 MitM Tool for Cisco PSK+XAUTH VPN
FakeIKEd, or fiked for short, is a fake IKE daemon supporting just enough of the standards and Cisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN setups in what could be described as a semi MitM attack. Fiked can impersonate a VPN gatewayâ€™s IKE responder in order to capture XAUTH login credentials; it doesnâ€™t currently do the client part of full MitM.
Fiked is partially based on vpnc and uses libgcrypt and optionally libnet.
Fiked supports IKEv1 in aggressive mode, using pre-shared keys and XAUTH. Supported algorithms are DES, 3DES, AES-128, AES-192, AES-256; MD5, SHA1; and DH groups 1, 2 and 5. IKE main mode is not supported.
Tool Submitted by Maximiliano Soler