A very basic IKE library.
The current functionality includes: 1. Generating a Main or Aggressive Mode IKE request packet with a variable amount of transforms and a vpn group. 2. Sending a packet 3. Receiving the response 4. Parsing the response for VIDs 5. Searching for the VIDs in 'ike-fingerprints.lua' 6. returning a parsed info table
This library is meant for extension, which could include: 1. complete parsing of the response packet (might allow for better fingerprinting) 2. adding more options to the request packet vendor field (might give better fingerprinting of services, e.g. Checkpoint) 3. backoff pattern analyses ...
An a implementation resembling 'ike-scan' could be built.
Handle a response packet A very limited response parser Currently only the VIDs are extracted This could be made more advanced to allow for fingerprinting via the order of the returned headers