This Streamcloud HTB walkthrough demonstrates a realistic Kubernetes pentest from initial cluster discovery to full privilege escalation. You’ll learn practical techniques for enumerating namespaces, identifying exposed kubelets and serviceAccounts, exploiting weak RBAC and misconfigured resources, and how to remediate these issues from a developer and ops perspective. Ideal for pentesters learning K8s attack paths and for engineers wanting to harden clusters.
Boardlight is a medium-difficulty Linux box on Hack The Box that showcases real-world privilege escalation via a vulnerable SUID binary. The machine walks you through basic enumeration, exploiting a web-based login system, and ultimately leveraging the CVE-2022-37706 vulnerability in Enlightenment’s enlightenment_sys utility to gain root access. It’s an excellent box for anyone learning local privilege escalation techniques and digging into command injection through poorly sanitised SUID binaries.
Explore Kubernetes security from a pentester’s point of view. Follow a hands-on walkthrough from reconnaissance to root access, focusing on network packet analysis, exploitation techniques, and cluster misconfigurations