You're reading from AWS Penetration Testing Beginner's guide to hacking AWS with tools such as Kali Linux, Metasploit, and Nmap

Product type Paperback

Published in Dec 2020

Publisher Packt

ISBN-13 9781839216923

Length 330 pages

Edition 1st Edition

Languages

Tools

AWS

Concepts

Cloud Security

Author (1):

Jonathan Helmus

View More author details

Table of Contents (17) Chapters

Preface

1. Section 1: Setting Up AWS and Pentesting Environments

2. Chapter 1: Building Your AWS Environment FREE CHAPTER

3. Chapter 2: Pentesting and Ethical Hacking

4. Section 2: Pentesting the Cloud – Exploiting AWS

5. Chapter 3: Exploring Pentesting and AWS

6. Chapter 4: Exploiting S3 Buckets

7. Chapter 5: Understanding Vulnerable RDS Services

8. Chapter 6: Setting Up and Pentesting AWS Aurora RDS

9. Chapter 7: Assessing and Pentesting Lambda Services

10. Chapter 8: Assessing AWS API Gateway

11. Chapter 9: Real-Life Pentesting with Metasploit and More!

12. Section 3: Lessons Learned – Report Writing, Staying within Scope, and Continued Learning

13. Chapter 10: Pentesting Best Practices

14. Chapter 11: Staying Out of Trouble

15. Chapter 12: Other Projects with AWS

16. Other Books You May Enjoy

Leave a review - let other readers know what you think

Chapter 11: Staying Out of Trouble

Pentesting can be very intrusive on AWS systems, and can also lead to legal issues if not executed correctly. When pentesting AWS, it's crucial to understand what you as a pentester can and cannot perform on an AWS system. These types of attacks bring systems down during a pentest and ruin your reputation, while also potentially destroying client systems and creating substantial revenue loss for both the pentesting company and the targeted client.

This chapter will discuss Denial of Service (DoS) and flooding attacks and how they work. Understanding how these attacks work illustrates the severity of the attacks and why we should stay away from them.

We will finish the chapter by discussing stress testing, which is also sometimes referred to as load testing, and get a high-level view as to what stress testing is and whether customers should be worried.

We will cover the following topics in this chapter: