YoVDO

Weaponizing Rsync 0Day Vulnerability

Offered By: Hack in Paris via YouTube

Tags

Hack in Paris Courses Cybersecurity Courses Network Security Courses Lateral Movement Courses

Course Description

Overview

Explore a critical 25-year-old vulnerability in the widely-used Rsync file transfer utility that enables code execution on connecting peers, potentially leading to silent lateral movement within networks. Dive into the discovery and weaponization of this "worm-able" remote code execution (RCE) vulnerability, which allows for writing or overwriting arbitrary files on connected systems. Learn about the Rsync tool's architecture, its delta transfer algorithm, and how the PRODAFT Threat Intelligence Team uncovered this long-standing security flaw during source code analysis. Gain insights into the implications of this vulnerability for network security and understand the technical details behind its exploitation.

Syllabus

Weaponizing Rsync 0Day Vulnerability by Ege BALCI


Taught by

Hack in Paris

Related Courses

An Introduction to Computer Networks
Stanford University via Independent Computer Networks
University of Washington via Coursera Computer Networking
Georgia Institute of Technology via Udacity Cybersecurity and Its Ten Domains
University System of Georgia via Coursera Model Building and Validation
AT&T via Udacity