NTA Monitor

Latest News

IT Managers get to grips with Internet security issues

4th May 2010 According to NTA Monitor's 2010 Annual Security Report, the average number of Internet security vulnerabilities afflicting organisations has fallen.. Read More

Will IE6 be the next NT4?

1st October 2009 All penetration testers will remember the long tail of Windows NT 4.0, and how this operating system continued to be used long past the point when security updates stopped at the end of 2004. For many years the presence of an unpatchable NT4 server was a common issue in a penetration test report, and it is only now, almost five years after security support ended, that finding an NT4 system on a network is becoming a rare event. Read More

One in four web applications susceptible to high risk security flaws

7th September 2009 NTA Monitor has reported a 10% increase in the total number of web applications found to have at least one high-risk security issue... Read More

Organisations facing a changing threat landscape

20th July 2009 According to NTA Monitor's 2009 Annual Security Report, the average number of Internet security vulnerabilities is on the rise... Read More

ike-scan

IPsec VPN scanning, fingerprinting and testing tool.

Overview

ike-scan is a command-line tool that uses the IKE protocol to discover, fingerprint and test IPsec VPN servers. It is available for Linux, Unix, MacOS and Windows under the GPL license.

Download

Source distribution: ike-scan-1.9.tar.gz
This will compile on Unix and Linux systems as well as Windows systems with Cygwin. You will need a C compiler, the "make" utility and the appropriate system header files to compile ike-scan. It uses autoconf and automake, so compilation and installation is the normal ./configure; make; make install process.
Windows binary: ike-scan-win32-1.9.zip
This is a zip file containing a Win-32 binary version of ike-scan together with the Cygwin DLL which provides posix support. It runs on Win-9x, NT, 2000 and XP. The executable was produced by compiling the ike-scan source on a Windows system running Cygwin.
RPM packages: http://www.stearns.org/ike-scan/
Thanks to Bill Stearns for producing the RPM packages.
Previous versions of ike-scan are available at: http://www.nta-monitor.com/tools/ike-scan/archive/
If you want an older version of the ike-scan software, you can get it from here.
Other pre-compiled packages: ike-scan is also available as a pre-compiled package for many other systems. The installation section of the ike-scan wiki contains details of the packages that I am aware of.

Documentation

The ike-scan wiki is the main source of documentation for ike-scan.

There are also Unix manpages included with the source distribution, which provide basic documentation on the usage and available options.

References

UDP backoff fingerprinting white paper

Common VPN flaws white paper