If you'd like to dive deeper into any of these steps, I can provide: The used for initial discovery. A Python script to automate the Gitea hook exploit. The Fail2Ban configuration details for the root exploit.
Enumeration inside the container reveals that it has access to specific files or the Docker socket. hackfail.htb
Disable Git hooks for non-admin users in Gitea's app.ini . If you'd like to dive deeper into any