Who Let The Dogs Out 🐾Mar 20, 2025

AWSGoat: A Damn Vulnerable AWS Infrastructure.

#aws #pentest #hacking #TestEnviroment

AWSGoat is a vulnerable by design infrastructure on AWS featuring the latest released OWASP Top 10 web application security risks (2021) and other misconfiguration based on services such as IAM, S3, API Gateway, Lambda, EC2, and ECS. AWSGoat mimics real-world infrastructure but with added vulnerabilities. It features multiple escalation paths and is focused on a black-box approach.

AWSGoat uses IaC (Terraform) to deploy the vulnerable cloud infrastructure on the user's AWS account. Using AWSGoat, the user can learn/practice:

- Cloud Pentesting/Red-teaming
- Auditing IaC
- Secure Coding
- Detection and mitigation

The project will be divided into modules and each module will be a separate web application, powered by varied tech stacks and development practices. It will leverage IaC through terraform and GitHub actions to ease the deployment process.

https://github.com/ine-labs/AWSGoat

GitHub - ine-labs/AWSGoat: AWSGoat : A Damn Vulnerable AWS Infrastructure

AWSGoat : A Damn Vulnerable AWS Infrastructure. Contribute to ine-labs/AWSGoat development by creating an account on GitHub.

GitHub
Aleq de VilliersMar 17, 2025
#Godots 's new spring bones are fun

#gamedev #TestEnviroment