Fiked is a fake IKE daemon that supports just
enough of the standards and Cisco extensions to
attack commonly found insecure Cisco PSK+XAUTH VPN
setups in what could be described as a semi-MitM
attack. Basically, knowing the pre-shared key,
also known as shared secret or group password, the
VPN gateway can be impersonated in IKE phase 1, in
order to learn XAUTH user credentials in phase 2.
The configuration supported by fiked is IKE
aggressive mode using pre-shared keys and XAUTH.
Supported algorithms are DES, 3DES, AES128,
AES192, AES256, MD5, SHA1, and DH groups 1, 2, and
5. Main mode is not supported.
