Penetration Testing

  • AWS customers are welcome to carry out security assessments or penetration tests against their AWS infrastructure without prior approval for 8 services.

Customer Service Policy for Penetration Testing

Permitted Services

  • EC2 instances, NAT Gateways, and Elastic Load Balancers.

  • RDS.

  • CloudFront.

  • Aurora.

  • API Gateways.

  • Lambda and Lambda Edge functions.

  • Lightsail resources.

  • Elastic Beanstalk environments.

Prohibited Activities

  • DNS zone walking via Amazon Route 53 Hosted Zones.

  • Denial of Service (DoS), Distributed Denial of Service (DDoS).

  • Port flooding.

  • Protocol flooding.

  • Request flooding.

PreviousGuardDutyNextSome Basics

Last updated

Was this helpful?