CloudGoat, created by Rhino Security Labs, is an “Vulnerable by Design” AWS deployment tool for cybersecurity skill development through capture-the-flag style scenarios. It offers a range of scenarios with varying levels of difficulty and multiple paths to victory. The tool focuses on providing high-quality learning experiences, good documentation, ease of installation and use, modularity, and expandability. CloudGoat warns users that it creates intentionally vulnerable AWS resources, so caution is advised. The tool requires specific system requirements and the AWS CLI installed. Users can create instances of scenarios in the cloud, follow scenario readmes, and refer to cheat sheets for help. CloudGoat also supports Docker usage.
https://github.com/RhinoSecurityLabs/cloudgoat