{"id":17278424,"url":"https://github.com/droe/fiked","last_synced_at":"2025-08-27T13:22:36.644Z","repository":{"id":140703390,"uuid":"1660778","full_name":"droe/fiked","owner":"droe","description":"IPsec IKEv1 PSK+XAUTH MitM attack daemon","archived":false,"fork":false,"pushed_at":"2023-03-20T12:03:56.000Z","size":320,"stargazers_count":21,"open_issues_count":0,"forks_count":9,"subscribers_count":5,"default_branch":"master","last_synced_at":"2025-04-14T09:21:20.669Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"https://www.roe.ch/FakeIKEd","language":"C","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/droe.png","metadata":{"files":{"readme":"README","changelog":"NEWS","contributing":null,"funding":null,"license":"COPYING","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2011-04-25T17:19:52.000Z","updated_at":"2023-06-10T19:40:33.000Z","dependencies_parsed_at":"2024-07-09T18:03:44.206Z","dependency_job_id":null,"html_url":"https://github.com/droe/fiked","commit_stats":null,"previous_names":[],"tags_count":5,"template":false,"template_full_name":null,"purl":"pkg:github/droe/fiked","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/droe%2Ffiked","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/droe%2Ffiked/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/droe%2Ffiked/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/droe%2Ffiked/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/droe","download_url":"https://codeload.github.com/droe/fiked/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/droe%2Ffiked/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":272335809,"owners_count":24916529,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","status":"online","status_checked_at":"2025-08-27T02:00:09.397Z","response_time":76,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-10-15T09:11:42.000Z","updated_at":"2025-08-27T13:22:36.624Z","avatar_url":"https://github.com/droe.png","language":"C","funding_links":[],"categories":[],"sub_categories":[],"readme":"/*\n * fiked - a fake IKE PSK+XAUTH daemon based on vpnc\n * Copyright (C) 2005,2009 Daniel Roethlisberger \u003cdaniel@roe.ch\u003e\n * \n * This program is free software; you can redistribute it and/or modify\n * it under the terms of the GNU General Public License as published by\n * the Free Software Foundation; either version 2 of the License, or\n * (at your option) any later version.\n * \n * This program is distributed in the hope that it will be useful,\n * but WITHOUT ANY WARRANTY; without even the implied warranty of\n * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the\n * GNU General Public License for more details.\n * \n * You should have received a copy of the GNU General Public License\n * along with this program; if not, see http://www.gnu.org/copyleft/\n */\n\n\n\n// Overview\n\nThis is a fake IKE daemon supporting just enough of the standards and\nCisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN\nsetups.\n\nBasically, if you know the pre-shared key, also known as shared secret\nor group password, you can impersonate the VPN gateway in IKE phase 1,\nand learn XAUTH user credentials in phase 2.\n\nThis attack [2,3] is not new.  It has been known for a long time that\nIKE using PSK with XAUTH is insecure, and this is not the first actual\nimplementation of the attack.\n\nThe configuration supported by fiked is IKE aggressive mode using\npre-shared keys and XAUTH.  Supported algorithms are DES, 3DES, AES128,\nAES192, AES256; MD5, SHA1; and DH groups 1, 2 and 5.  Main mode is not\nsupported.\n\nBased on this work, a full MITM attack could be implemented.\n\n\n\n// Attack Setup\n\nTo successfully demostrate an attack on a VPN site, you need to know the\nshared secret, and you must be able to intercept the IKE traffic between\nthe clients and the VPN gateway.\n\nThere are several ways to find out the shared secret [4], and several\nways to redirect the IKE traffic to your running fiked instance.\n\nWith the -r option, you can control whether fiked should forge the\nsource address on packets or not, depending on whether your particular\nattack setup needs it or not.\n\n\n\n// Installation\n\nYou need these libraries to build and run fiked:\n * libgcrypt \u003e= 1.1.90\n   http://directory.fsf.org/security/libgcrypt.html\n * libnet \u003e= 1.1.0 (optional)\n   http://www.packetfactory.net/projects/libnet/\n\nYou should be able to build and install fiked by just running GNU\nmake install (gmake on BSD) on systems with a C99 capable GCC.\n\nFiked has been developed on FreeBSD, but should build and run\nfine on other BSD and Linux boxes.  Please do send me patches.\nReported to work fine are OpenBSD and Debian.\n\nBy defining WITHOUT_LIBNET, you can omit libnet support, which will\nremove the dependency on libnet, and will give you a fiked which does\nnot support sending replies with forged source address (-r option).\n\n\n\n// Credits\n\nFiked is loosely based on vpnc [5].  The code borrowed from vpnc is\nfound in the vpnc subdirectory, see vpnc/NOTICE.\n\n\n\n// References\n\n[1] http://www.roe.ch/FakeIKEd\n[2] http://www.cisco.com/warp/public/707/cisco-sn-20040415-grppass.shtml\n[3] http://www.ima.umn.edu/~pliam/xauth/\n[4] http://ikecrack.sourceforge.net/\n[5] http://www.unix-ag.uni-kl.de/~massar/vpnc/\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdroe%2Ffiked","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fdroe%2Ffiked","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fdroe%2Ffiked/lists"}