POP3

Introduction

There are 3 different versions of POP, but POP3 is the mostly used one.
POP3 runs on TCP ports 110(unencrypted) and 995(encrypted) by default.
Post Office Protocol (POP) is a protocol that extracts and retrieves email from a remote mail server for access by the host machine.
POP3 provides users the ability to fetch and receive email

POP3 Basic Interaction

Command	Description
openssl s_client -connect <FQDN/IP>:pop3s	Connect to the POP3s service.
hydra -L users.txt -p 'Company01!' -f 10.10.110.20 pop3	Login Bruteforce with Hydra (POP3)

Command

Description

openssl s_client -connect <FQDN/IP>:pop3s

Connect to the POP3s service.

hydra -L users.txt -p 'Company01!' -f 10.10.110.20 pop3

POP3 Commands

Command	Description
USER username	Identifies the user.
PASS password	Authentication of the user using its password.
STAT	Requests the number of saved emails from the server.
LIST	Requests from the server the number and size of all emails.
RETR id	Requests the server to deliver the requested email by ID.
DELE id	Requests the server to delete the requested email by ID.
CAPA	Requests the server to display the server capabilities.
RSET	Requests the server to reset the transmitted information.
QUIT	Closes the connection with the POP3 server.

Command

Description

USER username

Identifies the user.

PASS password

Authentication of the user using its password.

STAT

Requests the number of saved emails from the server.

LIST

Requests from the server the number and size of all emails.

RETR id

Requests the server to deliver the requested email by ID.

DELE id

Requests the server to delete the requested email by ID.

CAPA

Requests the server to display the server capabilities.

RSET

Requests the server to reset the transmitted information.

QUIT

Closes the connection with the POP3 server.

Last updated 6 months ago