This post provides quick links to hosting provider’s penetration testing authorisation forms for quick reference.
If you are hosting your application at a hosting provider (which is most organisations) you generally need authorisation from the provider prior to conducting a penetration test. The following table provides direct links to the relevant location on the provider’s site.
Note that many of these will require you to login with the account that manages the systems to be tested. We will add to and update this list as and when new provider information becomes available.
| | | | Amazon Web Services | https://aws.amazon.com/forms/penetration-testing-request | | Digital Ocean | Raise a Support Ticket https://cloud.digitalocean.com/support/tickets/new | | Google Cloud | Not required (https://support.google.com/cloud/answer/6262505?hl=en | | Heroku | https://help.heroku.com/pentest-requests/new | | Microsoft Azure | https://security-forms.azure.com/penetration-testing | | Rackspace | Raise a Support Ticket via Control Panel https://mycloud.rackspace.com/ |
If you have any updates for this list please feel free to contact us or tweet us @4ARMED.
