Rhino Security Labs' "Vulnerable by Design" AWS infrastructure setup tool
- Python2 or Python3
- Terraform in your $PATH (https://www.terraform.io/downloads.html)
- gpg (
apt-get install gpg
) - OpenSSH (For SSH key generation)
git clone https://github.com/RhinoSecurityLabs/cloudgoat.git && cd cloudgoat
./start.sh <ip range>
- Where<ip range>
is an IP range that CloudGoat whitelists access to in every security group, to ensure only you can access the environment.
Now the credentials to get you started will be stored in ./credentials.txt and if you are starting with access to EC2 or Lightsail, the OpenSSH key is stored in ./keys/
./kill.sh
- The Glue development endpoint is disabled by default due to it costing far more than the whole rest of CloudGoat to run. If you would like to enable the Glue development endpoint (estimated at $1 per hour), uncomment the final three lines of "start.sh", uncomment the final eight lines of "kill.sh", and uncomment the file located at "./terraform/glue.tf".