Skip to content

Bash script to scan a large list of hosts in parallel using Rsync, identifying visible AND accessible modules anonymously.

License

Notifications You must be signed in to change notification settings

choupit0/RsyncScan

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
 
 
 
 
 
 
 
 

Repository files navigation

RsyncScan

made-with-bash

Description

Nmap only allows for brute-force attempts or listing visible Rsync modules for a given host, but it doesn't indicate whether they are anonymously accessible (similar to what NSE script smb-enum-shares does for SMB).

This Bash script is able to scan a large list of hosts in parallel (adjustable) and identify those using Rsync for remote synchronization. It will identify the visible modules and attempt to connect to each of them anonymously to identify those that are accessible.

This could be useful during internal/external pentesting to assess the level of protection.

Disclaimer: This is an educational tool; I am not responsible for its use. You are solely responsible for your actions.

Statistics

We can see below with Shodan that there are a significant number of servers listening on TCP port 873 on the Internet, which is the default port for the Rsync service (not counting those listening on non-standard ports).

Approximately ~70% are in the US, and over 50% are associated with Google (which includes legitimate public servers in the count of course).

Example Menu

Usage of the script:

Simply launch the script with the parameter being the file containing the list of hosts to scan (IP addresses or hostnames, one per line). By default, it runs in sequential mode (one host at a time, slower) with results displayed on the screen like this:

Example Menu

The second mode is much faster as it scans hosts in parallel (default is "50") with the letter "p", and you can track the progress (in percentage):

Example Menu

In both cases, once completed, a file will be generated containing all vulnerable hosts with the accessible modules (rsync command):

Example Menu

About

Bash script to scan a large list of hosts in parallel using Rsync, identifying visible AND accessible modules anonymously.

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages