[AWS-security]How to gain an admin privilege using CloudGoat!

Takahiro Oda
5 min readDec 27, 2021

What we will do in this article

1: setup an initial environment using Docker

2: conduct an IAM user privilege escalation attack

What is CoudGoat?

CloudGoat is Rhino Security Labs’ “Vulnerable by Design” AWS deployment tool. It allows you to hone your cloud cybersecurity skills by creating and completing several “capture-the-flag” style scenarios. Each scenario is composed of AWS resources arranged together to create a structured learning experience. Some scenarios are easy, some are hard, and many offer multiple paths to victory. As the attacker, it is your mission to explore the environment, identify vulnerabilities, and exploit your way to the scenario’s goal(s).


Set up an initial environment

1:create a IAM user called “cloudgoat” with AdministratorAccess.

Go to your AWS account and choose IAM section. Add user called “cloudgoat” and give access key for later use.

Add Admin policy