Skip to main content



CloudGoatChallenges - RCE Web App

Rhino Security released the CloudGoat2 “Vulnerable by Design” AWS deployment tool and along with same they included new attack scenario to learn and practise. Then they also announced about #CloudGoatChallenges on Twitter to win "Hands-On AWS Penetration Testing with Kali Linux"  book copy and some cool Rhino swag.
Below is my approach to solve the challenge.

Happy Hacking !!

Latest posts

PrivExchange : One Hop away from Domain Admin

Bypassing PaloAlto Traps EDR Solution

BloodHound 2.0 walkthrough on Kali 2018

Mapping Network using Sharphound

Active Directory Attack - DCSync

Active Directory Attack - DCShadow

Machine Accounts in Pentest Engagement

LAPS Auditing for Pentesters

Adversary Emulation System - Flightsim

Process Doppelgänging - Giving Hard Time to AV Vendors