Home » Series

Grafana Monitoring Stack

I Hardened a Grafana Stack From "Please Hack Me" to Production-Ready. Here's Every Command I Ran.

A complete live hardening session for a Grafana monitoring stack -- every command, every failure, every fix. 15 vulnerabilities across seven categories, from anonymous access and exposed Prometheus endpoints to plaintext secrets and a single browser tab that broke the rate limiter.

February 15, 2026 · 40 min · Oob Skulden™

15 Vulnerabilities in a Grafana Monitoring Stack (And How We Found Them)

A full vulnerability assessment of a Grafana/Prometheus monitoring stack across two VLANs. 98 commands, 15 confirmed vulnerabilities, and the investigative chain that led to each finding -- including the dead ends.

February 7, 2026 · 36 min · Oob Skulden™

Authentik + Grafana: OAuth SSO Across VLANs and the 11 Things That Broke

A complete walkthrough of deploying Authentik as an OIDC provider for Grafana and Prometheus across a multi-VLAN lab, including every issue encountered, the diagnostic reasoning behind each fix, and the security trade-offs made along the way.

February 4, 2026 · 26 min · Oob Skulden™