4rjiDocs - The most advanced documentation

Quick Start Commands

To start the lab just execute the script:

./goad.sh

Look for "ready for provisioning" status, then:

cd cbbe08-goad-virtualbox

Then:

start

To stop the lab:

stop

Choose Your Installation Method

Azure Cloud Installation

Deploy GOAD in Microsoft Azure cloud infrastructure for a scalable and flexible testing environment. Perfect for remote access and team collaboration.

Global Access

Access from anywhere in the world

Scalable

Scale resources as needed

Team Ready

Perfect for team training

Leveling Up My Pentesting Skills with GOAD in Azure

Recently, I deployed GOAD (Game of Active Directory) in Azure, and it's been one of the most valuable hands-on experiences I've had as a pentester. GOAD is a vulnerable lab environment that simulates a real-world Active Directory setup, complete with multiple Windows machines, common misconfigurations, and exploitable trust relationships.

Why Azure?

Spinning it up in Azure gave me the flexibility to build a realistic, isolated network without worrying about local resource limits. Plus, using the cloud makes it easy to reset, scale, or expand the lab as needed.

What I Learned:

Working inside GOAD forced me to sharpen my skills with privilege escalation, lateral movement, Kerberos abuse, and domain persistence—things every serious pentester should master. It's more than just labbing; it's about thinking like an attacker inside a live domain.

If you're serious about becoming better at AD pentesting, GOAD is a must. And doing it in Azure? Even better.

Since the installation gave me many problems, I will now try to install it better on my local server.

Steps on Azure:

1. Install Required Tools

brew install azure-cli
brew tap hashicorp/tap
brew install hashicorp/tap/terraform

2. Clone GOAD Repository

git clone https://github.com/Orange-Cyberdefense/GOAD.git

3. Azure Login and Setup

First, run az login. A screen will open where you can select the subscription you want to use.

4. Run GOAD Setup

cd GOAD
./goad.sh -t check -l GOAD -p azure

5. Installation Process

After the installation, you'll be prompted to accept the machines:

Do you want to perform these actions?
Terraform will perform the actions described above.
Only 'yes' will be accepted to approve.

Enter a value: yes

tls_private_key.ssh: Creating...
tls_private_key.linux_ssh: Creating...
tls_private_key.ssh: Creation complete after 1s [id=d9965602a16ea7bd4369666c33251f4988951298]
tls_private_key.linux_ssh: Creation complete after 2s [id=2eb76f61dfcb545c3a744dcedb09b29ea7b3a987]
azurerm_resource_group.resource_group: Creating...
azurerm_resource_group.resource_group: Still creating... [10s elapsed]

Kali VMware Installation

Local Control

Full control over your environment

Offline Testing

Test without internet dependency

Pre-built Tools

Kali tools ready to use

Set up GOAD locally using VMware with Kali Linux for a dedicated penetration testing environment. This installation provides full control over your testing environment with offline capabilities.

Note: For Proxmox, change the host configuration accordingly.

Installation Steps:

1. Get Linux Kernel Version

uname -r
6.12.41+deb13-amd64

2. Install Linux Headers

sudo apt install linux-headers-6.12.38+kali-amd64

3. Download and Install VMware

sudo bash VMware-Workstation-Full-17.6.4-24832109.x86_64.bundle

Start VMware and accept the terms and conditions.

4. Install Vagrant VMware Utility

cd /tmp
wget https://releases.hashicorp.com/vagrant-vmware-utility/1.0.21/vagrant-vmware-utility_1.0.21_linux_amd64.zip
sudo mkdir -p /opt/vagrant-vmware-desktop/bin
sudo unzip -d /opt/vagrant-vmware-desktop/bin vagrant-vmware-utility_1.0.21_linux_amd64.zip
sudo /opt/vagrant-vmware-desktop/bin/vagrant-vmware-utility certificate generate
sudo /opt/vagrant-vmware-desktop/bin/vagrant-vmware-utility service install

5. Install Vagrant

Install Vagrant

sudo apt install vagrant

Install Vagrant Plugins

vagrant plugin install vagrant-reload vagrant-vmware-desktop

6. Install Docker and Vagrant Plugins

sudo apt install docker.io

7. Clone GOAD Repository and Check

git clone https://github.com/Orange-Cyberdefense/GOAD.git
cd GOAD

./goad.sh -t check -l GOAD -p vmware -m docker

For a different version (MINILAB):

./goad.sh -t check -l MINILAB -p vmware -m docker

8. Install Required Gems

sudo gem install winrm winrm-fs winrm-elevated

9. Build Docker Image

sudo docker build -t goadansible .

10. Install GOAD

./goad.sh -t install -l GOAD -p vmware -m docker

11. Start GOAD

./goad.sh -t start -p vmware -l GOAD -m docker

VirtualBox Installation

Note: VirtualBox is free and perfect for beginners learning GOAD deployment.

Installation Steps:

1. Get Linux Kernel Version

uname -r
6.12.41+deb13-amd64

2. Install Linux Headers

sudo apt install linux-headers-$(uname -r)

3. Install VirtualBox 7

wget https://ftp.debian.org/debian/pool/main/libv/libvpx/libvpx7_1.12.0-1+deb12u4_amd64.deb
sudo apt install ./libvpx7_1.12.0-1+deb12u4_amd64.deb

wget https://download.virtualbox.org/virtualbox/7.0.26/virtualbox-7.0_7.0.26-168464~Debian~bookworm_amd64.deb
sudo dpkg -i virtualbox-7.0_7.0.26-168464~Debian~bookworm_amd64.deb

4. Configure Vagrant Repository

Edit the sources list and add the HashiCorp repository:

sudo nano /etc/apt/sources.list.d/hashicorp.list

Add this line:

deb [arch=amd64] https://apt.releases.hashicorp.com bookworm main

5. Install Vagrant and Dependencies

sudo apt update
sudo apt install vagrant
sudo apt install docker.io 
vagrant plugin install vagrant-reload

6. Restore Sources List

Put the line back as it was originally:

sudo nano /etc/apt/sources.list.d/hashicorp.list

7. Clone GOAD Repository and Check

git clone https://github.com/Orange-Cyberdefense/GOAD.git
cd GOAD

./goad.sh -t check -l GOAD -p virtualbox -m docker

For a different version (MINILAB):

./goad.sh -t check -l MINILAB -p virtualbox -m docker

8. Install Required Gems

sudo gem install winrm winrm-fs winrm-elevated

9. Build Docker Image

sudo docker build -t goadansible .

10. Install GOAD

./goad.sh -t install -l GOAD -p virtualbox -m docker

11. Start GOAD

./goad.sh -t start -l GOAD -p virtualbox -m docker

GOAD: Game of Active Directory

Hack the Forest, Rule the Domain!

Quick Start Commands

Choose Your Installation Method

Azure Cloud

Kali VMware

VirtualBox

Azure Cloud Installation

Global Access

Scalable

Team Ready

Leveling Up My Pentesting Skills with GOAD in Azure

Why Azure?

What I Learned:

Steps on Azure:

1. Install Required Tools

2. Clone GOAD Repository

3. Azure Login and Setup

4. Run GOAD Setup

5. Installation Process

Kali VMware Installation

Local Control

Offline Testing

Pre-built Tools

Installation Steps:

1. Get Linux Kernel Version

2. Install Linux Headers

3. Download and Install VMware

4. Install Vagrant VMware Utility

5. Install Vagrant

6. Install Docker and Vagrant Plugins

7. Clone GOAD Repository and Check

8. Install Required Gems

9. Build Docker Image

10. Install GOAD

11. Start GOAD

VirtualBox Installation

Installation Steps:

1. Get Linux Kernel Version

2. Install Linux Headers

3. Install VirtualBox 7

4. Configure Vagrant Repository

5. Install Vagrant and Dependencies

6. Restore Sources List

7. Clone GOAD Repository and Check

8. Install Required Gems

9. Build Docker Image

10. Install GOAD

11. Start GOAD