Pentest AWS: IAM, S3, Lambda, EKS, RDS
Auditoria ofensiva em conta AWS — IAM mal configurado, S3 público, Lambda com role over-privileged, EKS sem network policy, RDS exposto.
Why now
The real pain
Cloud não falha por exploit zero-day — falha por configuração. S3 público com 14M de currículos, IAM com AdministratorAccess pra dev junior, Lambda assumindo role de produção. Pentest AWS manual encontra essas misconfigs antes do scanner de bug bounty achar.
Applicable frameworks
/attack-surface
Pentest AWS
Every engagement is designed for your environment. The points below are part of our standard playbook for this sector — final scope is adapted to your stack and contract.
IAM e STS
Roles, policies, trust relationships, AssumeRole chains, privilege escalation, IAM enumeration via API.
S3 e storage
Buckets públicos, ACLs frouxas, bucket policies abertas, signed URL eterna, replication cross-account.
Lambda e Step Functions
Roles over-privileged, env vars com secret, Lambda Layers comprometidas, SSRF via VPC Endpoint.
EKS e ECS
Pod security, RBAC Kubernetes, IRSA, network policy, escape de container, kubelet exposto.
RDS, DynamoDB e Aurora
Acesso público, snapshot público, IAM auth, segregação por VPC, secrets em plain text.
VPC e networking
Security group aberto, NACL frouxa, VPC peering excessivo, Transit Gateway misconfig, exposed ALB.
/methodology
Genuinely manual pentest
Automated scanners find what's documented. Real attackers find what isn't. 90% of the work is manual — performed by specialists holding OSCP, CISSP, CRTO and GPEN.
01 · Reconnaissance
Target mapping, OSINT, footprint, sector-specific threat modeling.
02 · Discovery
Deep enumeration, complementary scanning, manual exposure identification.
03 · Exploitation
Manual validation with controlled PoC, finding chaining, escalation.
04 · Report
Executive + technical, step-by-step replication, mapped to applicable regulation.
/why-trust
Who has trusted our work
Conta AWS multi-account de fintech BACEN-regulada e SaaS B2B com clientes enterprise.
Technical assessment recognized in highly regulated, mission-critical environments — the pentest that finds what nobody had found before.
Douglas Lopes
Founder · CEO · intrus.io
/faq
FAQ — Pentest AWS
Cobre AWS Organizations multi-account?
Sim. Auditamos SCPs, OUs, central log account, security tooling account e relação trust entre contas.
Vocês quebram coisa?
Não. Operamos em ambiente espelho quando possível, ou com red flags acordadas em produção. Sem DoS, sem destruição.
Faixa de preço?
Conta AWS single-account simples: R$ 15-30k. Multi-account com 5-15 accounts: R$ 35-80k. Multi-account enterprise complexa: R$ 80-180k.
/contact
Cotar pentest AWS
Schedule a confidential meeting. Within 48h we'll send a proposal with scope, timeline and pricing.