POP (Post Office Protocol) Pentesting
Last modified: 2023-07-19
Post Office Protocol is an application-layer protocol used by email clients. POP3 is a commonly used version. Default ports are 110, 995.
Enumeration
nmap --script "pop3-capabilities or pop3-ntlm-info" -p 110 <target-ip>
Connect
nc <target-ip> 110
# or
telnet <target-ip> 110
Commands
# Login
USER <username>
PASS <password>
# Number and total size of all messages
STAT
# List messages and size
LIST
# Retrieve the message of given number
RETR <number>
# Delete the message of given number
DELE <number>
# Reset the mailbox
RSET
# Exit the mail server
QUIT