ENNAENNA

CloudGoat

BSD-3-Clause

☁️ Cloud Recon · Python

CloudGoat is Rhino Security Labs' 'Vulnerable by Design' AWS deployment tool. It provisions intentionally misconfigured AWS environments (scenarios) using Terraform, creating realistic attack paths for practicing cloud penetration testing. Scenarios include IAM privilege escalation, Lambda function exploitation, EC2 SSRF to metadata service, S3 bucket misconfigurations, and cross-account access abuse. Each scenario has documented start and end conditions with multiple solution paths. CloudGoat provisions and destroys environments on demand in your own AWS account, providing hands-on practice with real AWS services rather than simulations.

3.6kstars
753forks
21issues
Updated today
+I use this
View on GitHubOfficial Website

Installation

$ git clone https://github.com/RhinoSecurityLabs/cloudgoat.git && cd cloudgoat && pip install -r requirements.txt

Use Cases

  • Practicing AWS privilege escalation techniques
  • Training on cloud penetration testing in real AWS
  • Testing cloud security tools against known vulnerabilities
  • Learning IAM, Lambda, and S3 attack paths

Tags

awsvulnerable-by-designtrainingcloud-securityiam-exploitation

Details

Category
☁️ Cloud Recon
Language
Python
License
BSD-3-Clause
Platforms
🐧linux🍎macos🪟windows

Links

GitHub Repository

github.com/RhinoSecurityLabs/cloudgoat

Official Website

rhinosecuritylabs.com/aws/cloudgoat-vulnerable-design-aws-environment

Releases

github.com/RhinoSecurityLabs/cloudgoat/releases

Issues

github.com/RhinoSecurityLabs/cloudgoat/issues

Sponsored

Your ad here

Reach security professionals and developers - ads@en-na.com

Community Reviews

Alternatives & Comparisons

Pacu

Python

AWS exploitation framework. Enumerate, escalate, and exfiltrate across AWS services. The Metasploit of cloud.

Compare CloudGoat vs Pacu

Prowler

Python

Cloud security assessment tool. 300+ checks for AWS, Azure, GCP, and Kubernetes against CIS benchmarks.

Compare CloudGoat vs Prowler

ScoutSuite

Python

Multi-cloud security auditing tool for AWS, Azure, GCP, Alibaba Cloud, and Oracle Cloud.

Compare CloudGoat vs ScoutSuite

CloudFox

Go

Find exploitable attack paths in cloud infrastructure by enumerating IAM permissions, secrets, and network exposure.

Compare CloudGoat vs CloudFox

More in Cloud Recon

ScoutSuite

Python

Multi-cloud security auditing tool for AWS, Azure, GCP, Alibaba Cloud, and Oracle Cloud.

awsazuregcp

CloudMapper

Python

Analyze AWS environments to create network diagrams and identify security risks.

awsnetwork-diagramvisualization

S3Scanner

Go

Scan for misconfigured S3 buckets across AWS regions and dump accessible contents.

s3awsbucket

CloudBrute

Go

Cloud infrastructure enumerator to find company assets across multiple cloud providers.

cloudenumerationassets

MicroBurst

PowerShell

PowerShell toolkit for attacking Azure services including storage, key vaults, and automation.

azurepowershellstorage

ROADtools

Python

Framework for Azure AD enumeration and exploitation via the internal ROADrecon and ROADlib modules.

azure-adenumerationactive-directory