ππ
0 pts earned
Driftsync
An rsync daemon quietly exposes its modules to the world, no credentials required. Dig through the synchronized data, recover what was meant to stay private, and ride the drift all the way to root.
Premium
Walkthrough, Tips and Tricks
Walkthrough
List exposed rsync modules and pull interesting directories locally. Search synchronized content for credentials, keys, and deployment artifacts. Use discovered access material to gain an interactive shell. Enumerate sudo rights and exploit pager-based privilege escalation to reach root.
Tips and Tricks
Mirror modules locally so you can grep and diff efficiently. Pay attention to hidden files and deployment scripts. Treat private keys and token files as first-class targets.