Bug#225455: ITP: ike-scan -- Discover and fingerprint IKE hosts (IPsec VPN Servers)
Version: N/A; reported 2003-12-29
* Package name : ike-scan
Version : 1.5.1
Upstream Author : Roy Hills <Roy.Hills@nta-monitor.com>
* URL : http://www.nta-monitor.com/ike-scan/
* License : GPL
Description : Discover and fingerprint IKE hosts (IPsec VPN Servers)
ike-scan discovers IKE hosts and can also fingerprint them using the
retransmission backoff pattern.
ike-scan does two things:
a) Discovery: Determine which hosts are running IKE.
This is done by displaying those hosts which respond to the
IKE requests sent by ike-scan.
b) Fingerprinting: Determine which IKE implementation the hosts are using.
This is done by recording the times of the IKE response packets from the
target hosts and comparing the observed retransmission backoff
pattern against known patterns.
The retransmission backoff fingerprinting concept is discussed in
more detail in the UDP backoff fingerprinting paper which should be
included in the ike-scan kit as udp-backoff-fingerprinting-paper.txt.
-- System Information
Debian Release: 3.0
Kernel: Linux catbert 2.4.18-1-586tsc #3 Sat Nov 29 10:16:51 EST 2003 i586
Locale: LANG=C, LC_CTYPE=C