Which of the following options is the BEST method to identify assets hosted in the cloud as part of an organization's infrastructure during a penetration test?
Employing cloud service discovery tools designed to query cloud provider APIs and enumerate resources.
Conducting wardriving around the vicinity of the organization's physical location.
Reviewing job listings from the organization to infer cloud services in use.
Utilizing traditional network scanners to scan IP ranges owned by the organization.
Using dedicated cloud service discovery tools is the most effective method for identifying assets hosted in the cloud. These tools are designed specifically to detect and enumerate resources running in cloud environments. Scanning with conventional network scanners without cloud-specific functionality may not reveal all the cloud-based assets, as they might not be able to interact with cloud APIs or understand cloud-specific resource conventions and services. Wardriving is a technique used for discovering wireless networks and is not applicable to cloud asset discovery. Checking job listings might incidentally reveal some technologies being used but is not a systematic approach to discovering cloud-hosted assets.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are cloud service discovery tools and how do they work?
Open an interactive chat with Bash
Why can't traditional network scanners effectively identify cloud assets?
Open an interactive chat with Bash
What are the limitations of using job listings to discover cloud services?