AWS Pentesting

Create an AWS Read-Only Access Token

our services

During an AWS Penetration Test its common for the team to request an administrative read-only access token. This is used to review AWS assets and identify misconfigurations affecting them.

This may also be used for common pentesting tools such as ScoutSuite and our purpleleaf pentesting platform.

Below is a set by step guide to create these tokens:

1. Navigate to IAM

AWS IAM Console

2. Click Users

AWS IAM Users

3. Click Add User

IAM Add User

4. Create a name and select ‘Access key’

AWS User Access Token

5. Search ReadOnlyAccess

AWS ReadOnlyAccess Policy

6. Create User

Create User

7. Copy Access Token and Secret

Copy Access Token and Secret

Congrats you’re done! Always remember to keep this token in a secure location and remove the user when no longer used.

We
Are
Changing
The
Way
Pentesting
Is
Done
  • Application
  • Network
  • Mobile
  • AWS