Nmap Development mailing list archives

Previous By Date Next
Previous By Thread Next

Extending ike.lua

From: Gary Madarm <gmadarm () gmail com>
Date: Mon, 22 Aug 2016 17:21:37 +0300
I keep hitting false negatives when running ike-version.nse against VPN
hosts that support aggressive mode authentication. I'm not sure if this is
the correct approach but in my attempt to fix the issue, I want to beef up
the ENC_METHODS, AUTH_TYPES, HASH_ALGORITHM and GROUP_DESCRIPTION tables to
more closely match those mentioned in RFC 2409. At the moment I'm stuck on
the following table from ike-version.nse:

local GROUP_DESCRIPTION = {
  ["768"]  = 0x80040001,
  ["1024"] = 0x80040002,
  ["1536"] = 0x80040005,
  ["2048"] = 0x0004000E,
}


How does 768 == '0x80040001'? I want to add other groups (e.g. 3072, 4096,
6144) but don't understand how to create the proper (hex?) equivalent.

_______________________________________________
Sent through the dev mailing list
https://nmap.org/mailman/listinfo/dev
Archived at http://seclists.org/nmap-dev/
Previous By Date Next
Previous By Thread Next

Current thread: