From the course: Python: Pen Testing AWS
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Rules for pen testing AWS - Python Tutorial
From the course: Python: Pen Testing AWS
Rules for pen testing AWS
- [Instructor] Cloud service providers have some strict rules around what you can do in testing your cloud account and what you can't do. Let's take a look at the AWS terms around pen testing. AWS customers are not permitted to conduct any security assessments of AWS infrastructure. Amazon is happy with it's customers carrying out security assessments or penetration tests against their own applications and against eight permitted Amazon infrastructure services. Without having to notify Amazon. While we're permitted to crash a running process on our own AWS resource as necessary for remote or local exploitation, as part of the security assessment. We are not permitted to engage in any wider flooding or denial of service attacks, even against our own systems. The permitted services that customers can test are EC2 instances, NAT gateways, and elastic load balances. Relational databases, including Aurora, MySQL, MariaDB,…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Contents
-
-
-
Understanding AWS5m
-
(Locked)
Rules for pen testing AWS2m
-
(Locked)
Setting up an AWS account6m 17s
-
(Locked)
Provisioning an AWS resource3m 4s
-
(Locked)
Setting up the Windows Subsystem for Linux2m 19s
-
(Locked)
AWS Command Line Interface3m 31s
-
(Locked)
Automating cloud deployments with Terraform2m 27s
-
-
-
-
-
-