NTP (Network Time Protocol) Pentesting

Last modified: 2022-12-01

Network

NTP is a networking protocol for clock synchronization between computer systems over packet-switched. Default port is 123. It uses UDP.

Enumeration

nmap -sU --script ntp-info -p 123 <target-ip>
nmap -sU --script ntp-monlist -p 123 <target-ip>
nmap -sU --script ntp* -p 123 <target-ip>
nmap -sU --script "ntp* and (discovery or vuln) and not (dos or brute)" -p 123 <target-ip>

Ntpq

ntpq -c readlist <target-ip>
ntpq -c readvar <target-ip>
ntpq -c peers <target-ip>
ntpq -c associations <target-ip>
ntpdc -c monlist <target-ip>
ntpdc -c listpeers <target-ip>
ntpdc -c sysinfo <target-ip>

ON THIS PAGE

Enumeration