08.SYNCED (RSYNC)
Rsync, Protocols, Reconnaissance, Anonymous/Guest Access
root@oco:~$ sudo openvpn ~/Downloads/starting_point.ovpnENUMERATE SERVICES
root@htb:~$ nmap -sV -T4 {targetIP} -p-
PORT STATE SERVICE VERSION
873/tcp open rsync (protocol version 31)VULNERABILITY SCANNING
root@htb:~$ nmap -sV -sC -T4 {targetIP} -p 873
PORT STATE SERVICE VERSION
873/tcp open rsync (protocol version 31)
* the -SC runs the default set of Nmap scripts (NSE scripts), which typically include
scripts for service enumeration, version detection, and other basic checks.
root@htb:~$ sudo nmap --script=vuln {targetIP} -p 873
PORT STATE SERVICE
873/tcp open rsync
* the --script=vuln will run scripts that focus specifically on detecting known
vulnerabilities in the service running on port 6379
- e.g., weak configurations, or known vulnerabilities in the redis service
- if no results are found then the service may be fully patched!FOOTHOLD/COMPROMISE
Last updated