NTP-based DDoS attacks are fashionable, currently.
I've coded a little application which quickly scans a network for NTP servers. For those found, it rates them according to their susceptibility to being implicated in an amplification DDoS attack.
