stackoom
  简体   繁体   中英

Using OWASP ZAP (and tools of the same purpose) on AWS EC2

 原文  2021-02-09 11:07:34       amazon-web-services/ security/ testing/ owasp/ security-testing

Question

I am currently planning to do some web application vulnerability testing on an EC2 server with OWASP ZAP.

From my very quick google search, I found that AWS has stated that penetration testing services are allowed without approval ( https://aws.amazon.com/security/penetration-testing/ ).

However, to double down, I am wondering if anyone in the community has done this without issue.

Thanks!!!

1 answers

solution1
 1  2021-02-10 09:40:44

Yes, I frequently ran ZAP scans in AWS while I was at Mozilla. They were of course all against apps that I was permitted to test. You should be fine unless someone complains - if they do that then Amazon are likely to send you a warning and then disable your account if you dont reply with a good explanation, or if it keeps happenning of course.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Starting/Stopping AWS EC2 Instances using AWS Powershell Tools Which EC2 AWS CLI tools should I be using? Private Key Error in AWS EC2 Tools Using IDE on AWS EC2 What is the purpose of the key pairs (public and private) available in aws ec2? AWS S3 Running on the same EC2 What AWS CLI tools are installed by default on EC2 instances? AWS EC2 Default VPC access from CLI Tools AWS EC2 stop all through PowerShell/CMD tools AWS EC2 API CLI tools vs EC2 Command line tool CLI which one is latest
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM