NTP (Network Time Protocol) Pentesting
Last modified: 2022-12-01
NTP is a networking protocol for clock synchronization between computer systems over packet-switched. Default port is 123. It uses UDP.
Enumeration
nmap -sU --script ntp-info -p 123 <target-ip>
nmap -sU --script ntp-monlist -p 123 <target-ip>
nmap -sU --script ntp* -p 123 <target-ip>
nmap -sU --script "ntp* and (discovery or vuln) and not (dos or brute)" -p 123 <target-ip>
Ntpq
ntpq -c readlist <target-ip>
ntpq -c readvar <target-ip>
ntpq -c peers <target-ip>
ntpq -c associations <target-ip>
ntpdc -c monlist <target-ip>
ntpdc -c listpeers <target-ip>
ntpdc -c sysinfo <target-ip>