LogoAISecKit
  • Search
  • Collection
  • Category
  • Tag
  • Blog
  • Pricing
  • Submit
LogoAISecKit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

LogoAISecKit

Curated directory of 1700+ AI tools, models, frameworks, MCP servers, and cybersecurity resources

GitHub
Product
  • Search
  • Collection
  • Category
  • Tag
Resources
  • Blog
  • Pricing
  • Submit
Company
  • About Us
  • Privacy Policy
  • Terms of Service
  • Sitemap
Copyright © 2026 All Rights Reserved.
Sponsored Resources
  1. Home
  2. Category
  3. GCPGoat

GCPGoat

GCPGoat is a vulnerable by design infrastructure on GCP for learning and practicing cloud security.

Visit Website
Visit Website

Introduction

GCPGoat: A Damn Vulnerable GCP Infrastructure

GCPGoat is a project designed to help users learn about cloud security by providing a vulnerable infrastructure on Google Cloud Platform (GCP). It features the latest OWASP Top 10 web application security risks and common misconfigurations, allowing users to practice their skills in a controlled environment.

Key Features:
  • Vulnerable Infrastructure: Mimics real-world cloud infrastructure with intentional vulnerabilities.
  • Learning Modules: Divided into modules, each focusing on different web application vulnerabilities and misconfigurations.
  • Infrastructure as Code (IaC): Utilizes Terraform for easy deployment and management of the vulnerable infrastructure.
  • Hands-on Practice: Users can exploit vulnerabilities and learn about cloud security in a practical manner.
Benefits:
  • Skill Development: Ideal for security professionals and developers looking to enhance their cloud security skills.
  • Real-World Scenarios: Provides a safe environment to understand and exploit vulnerabilities without risk.
  • Community Contributions: Open-source project encourages contributions and improvements from the community.
Highlights:
  • Focus on OWASP Top 10 vulnerabilities.
  • Supports various tech stacks and development practices.
  • Free to use under certain conditions (GCP free tier).

GCPGoat is maintained by INE and welcomes contributions from the community to improve its functionalities and modules.

Back

Information

  • Publisher
    AISecKit
  • Websitegithub.com
  • Published date2025/04/28

Categories

  • Cloud Service Protection
  • Penetration Testing
  • Security Training Platforms

Tags

  • Open Source
  • Vulnerability Scanning
  • Cloud Security
  • Penetration Testing

More Products

image of Phantom
DevSecOps ToolsPenetration TestingVulnerability Scanners
Visit Website
icon of Phantom

Phantom

A browser extension for SRC vulnerability mining, collecting sensitive information and suspicious clues from web pages.

Security AuditingOpen SourceIncident ResponseVulnerability ScanningAPI Security+1
E
Penetration TestingSecurity Training PlatformsAI Security Monitoring
Visit Website
icon of Exploiting AI

Exploiting AI

An introductory class on understanding AI security risks and mitigation strategies.

Prompt InjectionGenerative AIRed Team TestingData Poisoning
A
Security Training PlatformsCTF ResourcesAI Security Monitoring
Visit Website
icon of AI Red Teaming Playground Labs

AI Red Teaming Playground Labs

AI Red Teaming playground labs to run AI Red Teaming trainings including infrastructure.

Red Team TestingVulnerability Scanning