Performing AWS Privilege Escalation Assessment When to Use - When conducting authorized penetration testing of AWS IAM configurations - When validating that IAM policies follow the principle of least privilege - When assessing the blast radius of a compromised AWS credential - When building security reviews for IAM role and policy changes in CI/CD pipelines - When evaluating cross-account trust relationships for privilege escalation risks Do not use for unauthorized testing against AWS accounts, for assessing non-IAM attack vectors (SSRF, application vulnerabilities), or as a substitute for c…