nerdexam
EC-Council

312-50V10 · Question #352

Fingerprinting VPN firewalls is possible with which of the following tools?

The correct answer is C. Ike-scan. Ike-scan is the tool purpose-built to discover and fingerprint IPsec VPN gateways by probing the IKE protocol used during VPN negotiation.

Scanning Networks

Question

Fingerprinting VPN firewalls is possible with which of the following tools?

Options

  • AAngry IP
  • BNikto
  • CIke-scan
  • DArp-scan

How the community answered

(46 responses)
  • B
    4% (2)
  • C
    93% (43)
  • D
    2% (1)

Why each option

Ike-scan is the tool purpose-built to discover and fingerprint IPsec VPN gateways by probing the IKE protocol used during VPN negotiation.

AAngry IP

Angry IP is a general-purpose IP and port scanner with no capability to interpret IKE protocol responses or fingerprint VPN devices.

BNikto

Nikto is a web server vulnerability scanner that probes HTTP/HTTPS services and has no functionality for VPN or IKE protocol analysis.

CIke-scanCorrect

Ike-scan sends IKE Phase 1 packets to target hosts and analyzes the responses, including vendor IDs and transform sets, to identify the specific VPN product and version in use. Because IKE is the handshake protocol underlying IPsec VPNs, ike-scan directly targets the VPN negotiation layer. This makes it uniquely suited for fingerprinting VPN firewalls compared to generic network scanners.

DArp-scan

Arp-scan operates at Layer 2 to discover hosts on a local network segment using ARP and cannot interact with or fingerprint VPN firewall services.

Concept tested: VPN firewall fingerprinting using IKE protocol

Source: https://www.nta-monitor.com/wiki/index.php/Ike-scan_User_Guide

Topics

#ike-scan#VPN fingerprinting#IKE protocol#firewall enumeration

Community Discussion

No community discussion yet for this question.

Full 312-50V10 Practice