CVE-2013-5211

This repository contains a Python-based scanner for detecting NTP servers vulnerable to CVE-2013-5211, an NTP amplification DDoS vulnerability. It sends a crafted NTP packet and checks the response for signs of vulnerability.

This repository contains a functional proof-of-concept for CVE-2013-5211, an NTP reflection DoS vulnerability. The tool crafts and sends spoofed NTP packets to amplify traffic towards a target, leveraging vulnerable NTP servers.

This PoC exploits CVE-2013-5211, a DoS vulnerability in NTP servers by sending a crafted UDP packet to trigger the monlist command, which can exhaust server resources. The script checks for vulnerability by analyzing the server's response.

This repository contains a scanner for CVE-2013-5211, which targets the NTP monlist feature. The code sends crafted UDP packets to a range of IP addresses and listens for responses to identify vulnerable NTP servers.

This repository contains a C# scanner for CVE-2013-5211, which checks if an NTP server is vulnerable to a DoS attack by sending a crafted NTP packet and analyzing the response. It does not exploit the vulnerability but only detects its presence.

This Metasploit module scans for NTP servers vulnerable to CVE-2013-5211 by querying the 'monlist' feature, which can be exploited for DRDoS attacks. It identifies vulnerable servers and extracts recent client lists for analysis.

This Metasploit module scans for UDP endpoints vulnerable to amplification attacks by sending probes and analyzing responses. It does not exploit a specific CVE but checks for a general UDP amplification vulnerability.

This Metasploit module scans for NTP servers vulnerable to a DRDoS amplification attack via the PEER_LIST_SUM query. It sends a crafted UDP packet and checks if the response is larger than the request, indicating potential for abuse in amplification attacks.

This Metasploit module scans for NTP servers vulnerable to a DRDoS amplification attack via the PEER_LIST query. It sends a crafted UDP packet and checks if the response is larger than the request, indicating potential for abuse in denial-of-service attacks.

This PoC demonstrates NTP DDoS amplification (CVE-2013-5211) by crafting a spoofed UDP packet with a MON_GETLIST request to an NTP server, which can be abused to reflect traffic to a target. The code constructs raw IP/UDP/NTP packets and sends a single packet for educational purposes.

This Metasploit module scans for Portmapper services vulnerable to amplification DDoS attacks by sending RPC DUMP and GETSTAT requests. It identifies hosts that can be exploited for DRDoS by analyzing responses to crafted UDP packets.

This Metasploit module scans for NTP servers vulnerable to DRDoS attacks via mode 6 REQ_NONCE requests, checking for amplification vulnerabilities. It sends UDP probes and analyzes responses to determine if the server can be exploited for traffic amplification.

This Metasploit module scans for NTP servers vulnerable to DRDoS amplification via the GET_RESTRICT query (CVE-2013-5211). It sends a crafted UDP packet and checks responses to identify vulnerable hosts.

This Metasploit module scans for SSDP amplification vulnerabilities by sending M-SEARCH probes to discover devices vulnerable to amplification attacks. It checks for responses indicating potential amplification and reports vulnerable hosts.

This Metasploit module scans for NTP servers vulnerable to DRDoS attacks via mode 6 UNSETTRAP requests, which can amplify traffic in response to spoofed packets. It checks for amplification potential by analyzing server responses.

This Metasploit module scans NTP servers for clock variable disclosure via NTP Mode 6 READVAR requests, potentially exposing sensitive system information. It also checks for DRDoS amplification vulnerabilities.