Performing Cloud Penetration Testing with Pacu When to Use - When conducting authorized penetration testing of AWS environments - When validating the effectiveness of IAM policies, SCPs, and permission boundaries - When assessing the blast radius of a compromised set of AWS credentials - When testing detection capabilities of GuardDuty, Security Hub, and custom alerting - When building red team exercises against AWS cloud infrastructure Do not use for unauthorized testing of any AWS account, for testing AWS infrastructure itself (covered by shared responsibility), for DDoS or volumetric attac…