The IKE-Scan Wrapper Plugin is implemented as a Nessus Plugin in C and makes the IPSec fingerprinting functionality of IKE-Scan available to the Nessus community.

Installation

To install the IKE-Scan Wrapper Plugin you need to have a Nessus build system available consisting of the following modules from the Nessus CVS: nessus-core, nessus-libraries, libnasl and nessus-plugins.

Extract the archive ike_scan_wrapper.tar into the directory nessus-plugins/plugins/ You should then have a directory nessus-plugins/plugins/ike_scan_wrapper/ containing the following files

• README
• ike_scan_wrapper.c
• Makefile

The standard plugin build process (configure, make, make install) will then also build the IKE-Scan Wrapper Plugin and install it into the Nessus plugins directory (typically /usr/local/lib/nessus/plugins/).

Alternatively, you may download the binary for the plugin, if available for your platform, and copy the file ike_scan_wrapper.nes manually into the Nessus plugins directory.

Usage

Note, that a prerequisiste for running the IKE-Scan Wrapper Plugin with Nessus is that you have IKE-Scan installed on the same system where you are running nessusd. Make sure the ike-scan binary is installed in /usr/local/bin.

After successful installation you have to restart the Nessus daemon in order to make the new plugin available to Nessus clients. The IKE-Scan plugin will show up as new plugin called "IKE-SCAN" in the "General" plugins family.

When selecting this plugin for a scan against a target system, IKE-Scan will be executed against this system and its output will be placed as a security note into a Nessus report.