fiked Package Description

FakeIKEd, or fiked for short, is a fake IKE daemon supporting just enough of the standards and Cisco extensions to attack commonly found insecure Cisco VPN PSK+XAUTH based IPsec authentication setups in what could be described as a semi MitM attack. Fiked can impersonate a VPN gateway’s IKE responder in order to capture XAUTH login credentials; it doesn’t currently do the client part of full MitM.

Source: http://www.roe.ch/FakeIKEd
fiked Homepage | Kali fiked Repo

• Author: Daniel Roethlisberger
• License: GPLv2

Tools included in the fiked package

fiked – Cisco VPN attack tool

[email protected]:~# fiked -h
Usage: fiked [-rdqhV] -g gw -k id:psk [-k ..] [-u user] [-l file] [-L file]
    -r  use raw socket: forge ip src addr to match <gateway> (disables -u)
    -d  detach from tty and run as a daemon (implies -q)
    -q  be quiet, don't write anything to stdout
    -h  print help and exit
    -V  print version and exit
    -g gw   VPN gateway address to impersonate
    -k i:k  pre-shared key aka. group password, shared secret, prefixed
        with its group/key id (first -k sets default)
    -u user drop privileges to unprivileged user account
    -l file append results to credential log file
    -L file verbous logging to file instead of stdout

fiked Usage Example

[email protected]:~# coming soon