My Nmap version showed me one open port, which is running the Rsync service. A common issue is that rsync servers are misconfigured, allowing anonymous access which can be exploited by attackers to gain unauthorized access to sensitive information on the remote machine. This highlights the importance of properly configuring rsync to prevent such security risks.
To list all available directories, I used 'rsync --list-only IPaddress::' and the result showed me a public share.
To access the public directory, I use the same command but specify the directory. Inside the public directory is the flag.txt file that can be read.
I will now copy/sync this file to my computer using the command 'rsync IPaddress::directory/file file'. Using the `cat` command, I opened the text file and obtained the flag.
