HTB Facts Walkthrough: From Camaleon CMS to Root via AWS S3 and Facter
A complete step-by-step walkthrough of the HTB "Facts" machine. From initial access via Camaleon CMS CVE-2025-2304, extracting AWS S3 credentials, cracking an SSH key, to rooting the box using a custom Facter fact.