Posts with the tag aws:

CloudGoat SNS Secrets

Warning Spoilers Ahead!

This is a write up the CloudGoat scenario sns_secrets and was created by the one and only Tyler Ramsbey.

Another walkthrough of the scenario can be found on TryHackMe which uses the Pacu SNS modules, mines uses the AWS CLI.

At time of writing this the scenario is still a GitHub Pull Request but its ready!

2024 Northeast CCDC

This post goes over some of our methodology & rationale when we created this year’s (2024) Northeast Collegiate Cyber Defense League competition environment.

Topics that I’m planning to cover

I also have another post going through the CTF challenges we released

2024 Northeast CCDC Challenges

Warning Spoilers!

Challenges

This writeup goes over the challenges created by the Black Team leading up to the 2024 Northeastern CCDC Competition.

There were a total of 4 challenges:

I also go into our thought process when making the challenges.

CloudGoat RDS Snapshot

Warning Spoilers!

This is a write up the CloudGoat scenario rds_snapshot scenario and was created by the Best of the Best 12th CGV Team (Yong Siwoo, Park Do Kyu, Park Seo Hyun, Jung Ho Shim, Chae Jinsoo).

CloudGoat SQS Flag Shop Scenario

Warning Spoilers!

This is a write up the CloudGoat scenario sqs_flag_shop and was created by the Best of the Best 12th CGV Team (Yong Siwoo, Park Do Kyu, Park Seo Hyun, Jung Ho Shim, Chae Jinsoo)

CloudGoat Glue Privilage Evasion Scenario

Warning Spoilers!

This is a write up the CloudGoat scenario glue_privesc and was created by the Best of the Best 12th CGV Team (Yong Siwoo, Park Do Kyu, Park Seo Hyun, Jung Ho Shim, Chae Jinsoo).

EKS Cluster Games

Warning Spoilers!

This walkthrough goes over the 5 EKS Cluster Game challenges created by wiz.io.

https://eksclustergames.com/

CloudGoat IAM Privesc by Key Rotation

Warning Spoilers!

This is a write up the CloudGoat scenario iam_privesc_by_key_rotation.

Flaws2

Warning Spoilers!

This writeup goes through the attacker path of FlAWS 2.

CloudGoat

Warning Spoilers!

This is a write up the current CloudGoat scenarios.

https://github.com/RhinoSecurityLabs/cloudgoat