Skip to content
HackIndex logo

HackIndex

Rsync

File sync daemon

:873 4 guides 3 phases

1 min read
Updated: Apr 19, 2026

What is Rsync?
Rsync can run as a daemon that exposes named modules for file synchronization and mirroring.

Common security issues

  • Anonymous module listing

  • Readable modules exposing backups, configs, or web roots

  • Writable modules leading to file overwrite or webshell-style drops

  • Sensitive data in “backup” or “snapshot” modules

Enumeration List modules, check access, and pull high-value directories
Exploitation Pull files and upload backdoors via open or writable rsync modules
Vulnerability Discovery Guides on finding open rsync shares with no auth required