Rhino Security Labs

Strategic & Technical Blog

CloudGoat detection_evasion Scenario:
Avoiding AWS Security Detection and Response

Mitch Fentz

CloudGoat is Rhino Security Labs’s tool for deploying “vulnerable by design” AWS infrastructure. This blog post will walk through the new detection_evasion scenario, where you will attempt to move through an AWS environment, capturing…

CloudGoat goes Serverless:
A walkthrough of Vulnerable Lambda Functions

Cloud Malware:
Resource Injection in CloudFormation Templates

CloudGoat ECS_EFS_Attack Walkthrough

Sebastian Mora

Cloudgoat is a tool that can build vulnerable Capture-the-Flag style AWS environments to help security assessors learn about AWS security and AWS vulnerabilities. This walkthrough will cover the CloudGoat attack simulation “ecs_efs_attack…