Rhino Security Labs

Strategic Blog

Technical Strategic Technical & Strategic Both
Cloud Security

CloudGoat Official Walkthrough Series: ‘glue_privesc’

John De Armas
September 10, 2024

CloudGoat is Rhino Security Labs’s tool for deploying “vulnerable by design” AWS infrastructure. This blog post will walk through one of the newest CloudGoat scenarios, glue_privesc. where you will attempt to move through an AWS…

Read more
AWS

Attacking AWS Cognito with Pacu (p2)

Cloud Security

Working-As-Intended:
RCE to IAM Privilege Escalation in GCP Cloud Build

Technical Strategic Technical & Strategic Both
Categories
Clear Selection
Application Security
AWS
Azure
Buyer's Guide
Cloud Security
Compliance
Enterprise Security
GCP
Mobile Security
Network Security
News
Penetration Testing
Research
Social Engineering
Tool Development
AWS

The Capital One Breach
& “cloud_breach_s3” CloudGoat Scenario

Jeffrey Anderson

Cloud security, specifically AWS security, is once again in the news. This time it’s a major breach at banking giant Capital One. With 100 million customers affected, it ranks as one of the largest data breaches to date. Capital One now…

Read more