Script ike-version

Script types: portrule
Categories: default, discovery, safe, version
Download: https://svn.nmap.org/nmap/scripts/ike-version.nse

Script Summary

Obtains information (such as vendor and device type where available) from an IKE service by sending four packets to the host. This scripts tests with both Main and Aggressive Mode and sends multiple transforms per request.

Example Usage

nmap -sU -sV -p 500 <target>
nmap -sU -p 500 --script ike-version <target>

Script Output

PORT    STATE SERVICE REASON       VERSION
500/udp open  isakmp  udp-response Fortinet FortiGate v5
| ike-version:
|   vendor_id: Fortinet FortiGate v5
|   attributes:
|     Dead Peer Detection v1.0
|_    XAUTH
Service Info: OS: Fortigate v5; Device: Network Security Appliance; CPE: cpe:/h:fortinet:fortigate

Requires


Author:

  • Jesper Kueckelhahn

License: Same as Nmap--See https://nmap.org/book/man-legal.html