HTB Writeup: Ambassador

Difficulty: Easy

Completion: User & Root

🧭 Overview

Ambassador is a good introduction to enumerating microservice interfaces and chaining weak configurations for full system compromise.

🛠️ Tools Used

• nmap
• ffuf
• kubectl (later enumeration)
• ssh

🪜 Attack Path (Public)

1. Initial port scan revealed ports 22, 80, and 443 open.
2. Found exposed dashboard hinting at a Kubernetes service.
3. Discovered YAML-based configs with hardcoded credentials.
4. SSH access led to local enumeration and full root via SUID misconfiguration.

Request Full Report – Authorized Eyes Only

⮐ Back to Writeup Hub