By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Penetration Test against App Runner

0

Can we run penetration tests against the "App Runner" services where we have deployed containers?

Topics
Security, Identity, & ComplianceComputeContainers
Tags
Security, Identity, & ComplianceAWS Security HubAWS App Runner
Language
English
rePost-User-9407105
asked 2 years ago324 views
1 Answer
0

Hello,

Penetration tests can be performed against or from resources on your AWS account by following the policies and guidelines at Penetration Testing. You don't need approval from AWS to run penetration tests against or from resources on your AWS account.

If you need to perform other operations such as running security test other than a penetration test, see the guidelines at Other simulated events.

Further more, you are not permitted to perform any security assessments of AWS infrastructure that is not on your AWS account.

You are also not permitted to conduct security assessments of AWS services themselves. If you discover a security issue within any AWS service in the course of your security assessment, contact AWS Security immediately.

To request permissions for other simulated environments, submit a request using the Simulated Event form and provide a full description of your planned event, including details, risks, and desired outcomes.

I hope this helps.

Lunga T
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content