ike-scan v1.5.1 has been released. There are many changes from the last official release which was v1.2. In summary, the changes are:
a) More IKE backoff patterns which allows more systems to be fingerprinted;
b) More flexible backoff pattern specification which allows systems with more complex backoff patterns to be fingerprinted;
c) Ability to specify arbitrary Vendor ID payloads. Multiple Vendor ID payloads may be specified;
d) ike-scan will display any Vendor ID payload that it receives from the VPN servers;
e) Ability to specify multiple custom transforms;
f) Ability to specify key-length for variable length ciphers (e.g. AES);
g) Support for Aggressive Mode in addition to Main Mode;
h) UDP packet-sending engine improvements which allow more accurate packet timing; and
i) Created ike-scan man page.
For details of the changes, please read the ChangeLog and NEWS files in the tarball.
For usage notes, please read the README and README-WIN32 files in the Tarball.
To download the new version, go to:
http://www.nta-monitor.com/ike-scan/
md5sums should be:
6425534104fd9f6f644c6f7286ed40e1 ike-scan-1.5.1.tar.gz (Source Tarball) 52cf28982532030b2e7faf26dde8fb1d ike-scan-win32-1.5.1.zip (Windows-32 Binary)
Thanks to everyone who has submitted new IKE backoff patterns and reported bugs.
Please continue to send any comments or suggestions to: ike-scan@nta-monitor.com
Roy Hills
