- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
TryHackMe Free Room | Frank & Herby Walkthrough | Kubernetes Privilege Escalation with MicroK8s
#k8s #cybersecurity #ethicalhacking
In this video, we perform a full walkthrough of the TryHackMe room "Frank & Herby Make an App!" and demonstrate how to compromise the machine from initial reconnaissance to full root access.
This room is a great example of how misconfigured Kubernetes environments can lead to privilege escalation. We senumerate web directories, discover exposed credentials, and gain SSH access to the system.
Once inside the machine, we analyze the MicroK8s Kubernetes environment and identify a privilege escalation opportunity via deployment creation. By exploiting MicroK8s privilege escalation (CVE-2019-15789) and abusing hostPath mounts, we escalate privileges to root and capture the final flag.
This walkthrough demonstrates several important penetration testing techniques including:
🔹 Web directory enumeration using dirsearch
🔹 Credential discovery in exposed files
🔹 SSH access using leaked credentials
🔹 Kubernetes enumeration with kubectl
🔹 Exploiting MicroK8s deployments for privilege escalation
🔹 Abusing hostPath mounts to modify host files
🔹 Escalating privileges to root
If you're learning penetration testing, Kubernetes security, or preparing for CTF challenges, this room provides valuable real-world lessons about container orchestration security risks.
👍 If you enjoy cybersecurity walkthroughs, consider subscribing for more TryHackMe, HackTheBox, and VulnHub tutorials.
Видео TryHackMe Free Room | Frank & Herby Walkthrough | Kubernetes Privilege Escalation with MicroK8s канала Junhua's Cyber Lab
In this video, we perform a full walkthrough of the TryHackMe room "Frank & Herby Make an App!" and demonstrate how to compromise the machine from initial reconnaissance to full root access.
This room is a great example of how misconfigured Kubernetes environments can lead to privilege escalation. We senumerate web directories, discover exposed credentials, and gain SSH access to the system.
Once inside the machine, we analyze the MicroK8s Kubernetes environment and identify a privilege escalation opportunity via deployment creation. By exploiting MicroK8s privilege escalation (CVE-2019-15789) and abusing hostPath mounts, we escalate privileges to root and capture the final flag.
This walkthrough demonstrates several important penetration testing techniques including:
🔹 Web directory enumeration using dirsearch
🔹 Credential discovery in exposed files
🔹 SSH access using leaked credentials
🔹 Kubernetes enumeration with kubectl
🔹 Exploiting MicroK8s deployments for privilege escalation
🔹 Abusing hostPath mounts to modify host files
🔹 Escalating privileges to root
If you're learning penetration testing, Kubernetes security, or preparing for CTF challenges, this room provides valuable real-world lessons about container orchestration security risks.
👍 If you enjoy cybersecurity walkthroughs, consider subscribing for more TryHackMe, HackTheBox, and VulnHub tutorials.
Видео TryHackMe Free Room | Frank & Herby Walkthrough | Kubernetes Privilege Escalation with MicroK8s канала Junhua's Cyber Lab
tryhackme frank and herby tryhackme frank and herby walkthrough tryhackme frank and herby writeup tryhackme kubernetes room tryhackme microk8s privilege escalation kubernetes privilege escalation microk8s cve-2019-15789 kubernetes security tutorial kubernetes exploitation tryhackme walkthrough tryhackme writeup ctf walkthrough ethical hacking tutorial penetration testing tutorial rustscan tutorial dirsearch tutorial kubernetes pentesting container security
Комментарии отсутствуют
Информация о видео
9 марта 2026 г. 21:00:25
00:37:53
Другие видео канала
Assertion VulnHub Walkthrough | Local File Inclusion with New Trick
DVWA Complete Tutorials 2026 (Damn Vulnerable Web Application): Stored XSS Module | Low
Inclusiveness VulnHub Walkthrough | Exploit robots.txt, LFI & FTP Upload | Beginner
bWAPP Tutorial for Beginners (2026) | SQL Injection (GET/Select Tutorial) |
Linux Tutorial: Why File Size Shows 9 Bytes Instead of 8 | Echo vs Printf Explained
Pentesting General | Local Port Forwarding Summary
TryHackMe Devie Full Walkthrough | Python Eval Exploit, Reverse Shell, XOR , Privilege Escalation
TryHackMe Cheese CTF Full Walkthrough | Login Bypass, LFI to RCE | Complete Ethical Hacking Guide
Cyber Security | Ethical Hacking | Penetration Test | CTF | Walkthrough | HA Armour
Cyber Security | Ethical Hacking | Penetration Test | CTF | Walkthrough | Temple of Doom
Cyber Security | Penetration Test | CTF | Walkthrough | WinterMute | Neuromancer | Pivot With Socat
CTF | OverTheWire | Wargames | Narnia | Level 1 | EGG Environment Variable Exploit with Pwntools
Cyber Security | Ethical Hacking | Penetration Test | CTF | Walkthrough | SolidState | Metasploit
SecKC:1 VulnHub Walkthrough – WordPress RCE, SQL Injection, PrivEsc | CTF Hacking Guide
Vulnhub BsidesTLV 2018 | Creative Agency Walkthroug | Manually De-Obfuscate Step by Step
HA:Natraj VulnHub Walkthrough | SSH Log Poisoning | CTF Hacking Guide
DVWA Complete Tutorials 2026 (Damn Vulnerable Web Application):File Inclusion Module | Medium
Cyber Security | Ethical Hacking | Penetration Test | CTF | Walkthrough | Panabee 1
How I Extracted the FLAG from a QR Code in a PDF (TryHackMe Confidential)
BWAPP SQL Injection GET Search
TryHackMe: Neighbor Walkthrough — Exploiting a Simple IDOR (Guest → Admin)
