Never run containers as root and avoid mounting the Docker socket unless absolutely necessary.
Look for API keys or database passwords. hackfail.htb
The final step is moving from a standard user (or container escape) to the user. Exploiting Fail2Ban Never run containers as root and avoid mounting
Check the web application for leaked credentials or look for "Register" buttons that might be open. hackfail.htb
Gitea is the primary vector for gaining a foothold on this machine. Identifying the Vulnerability