0. AWS Resources

News/vulnerability
https://www.cloudvulndb.org/results?tags=AWS
https://www.breaches.cloud/

https://secops.group/product/certified-cloud-pentesting-expert/

Cheatsheet/guide
https://hackingthe.cloud/aws/general-knowledge/aws_organizations_defaults/
https://cloud.hacktricks.xyz/pentesting-cloud/aws-security

https://github.com/akinahmet/AWS-Cheat-Sheet
https://github.com/dafthack/CloudPentestCheatsheets
https://www.youtube.com/watch?v=MW_hOCTFU1g

https://github.com/sottlmarek/DevSecOps#multi-cloud

https://github.com/ine-labs/AWSGoat
https://owasp.org/www-chapter-singapore/assets/presos/AWSGoat_-_A_Damn_Vulnerable_AWS_Infrastructure.pdf

Learning platforms

http://flaws.cloud/
http://flaws2.cloud/
https://btc.breakforge.io/

CloudGoat
Vulnerable AWS environment

https://github.com/RhinoSecurityLabs/cloudgoat

Step1: Install python3.6+ version is not installed previsously
Step2: Install terraform from this link - https://developer.hashicorp.com/terraform/tutorials/aws-get-started/install-cli
Step3: Install AWS Cli
Step4: Install js with this command "sudo apt install jq"

## Tool installation:
git clone https://github.com/RhinoSecurityLabs/cloudgoat.git
cd cloudgoat
pip3 install -r ./requirements.txt
chmod +x cloudgoat.py

## CG configuration:
$ ./cloudgoat.py config profile
$ ./cloudgoat.py config whitelist --auto