hackaws.cloud

What It Is

hackaws.cloud is an autonomous penetration testing SaaS platform designed specifically for AWS environments. Using an initial credential provided by the user (such as an IAM key, Lambda, or EC2 instance) as a foothold, it leverages autonomous agents to move laterally within the AWS environment, mapping out all lateral movement and privilege escalation paths. This helps enterprises visualize their true attack surface and blast radius.

Core Dimension Analysis

• Protection Type: Falls under Attack Surface Management (ASM) and cloud penetration testing. Unlike traditional checklist-based configuration audits, it simulates real attacker behavior by leveraging role assumption, policy abuse, and credential chaining to discover actually exploitable attack paths.
• Deployment: Pure SaaS model. The agents are launched from hackaws's SaaS platform and driven via AWS APIs; it does not perform SSH brute-forcing or web vulnerability exploitation, and requires no local software installation on the user's end.
• Management & Alerting: Provides real-time attack graph visualization, allowing users to intuitively view the operation logs of every step taken by the agent. After testing, it delivers a comprehensive report including attack paths, severity ratings, and remediation steps. It supports setting boundaries to protect sensitive resources.
• Integration Capabilities: Deeply integrates with AWS APIs, supporting cross-account role assumption to map organization-level blast radius. The Enterprise edition offers SSO integration, MCP, and API access.

Pricing

Adopts a subscription model billed per AWS account. The Starter plan is free, limited to 1 assessment per month for a single account; the Pro plan is $19/account/month, supporting multiple accounts and unlimited assessments; the Enterprise plan is $49/account/month, adding organization-level scanning, continuous monitoring, and API/SSO support. The pricing is relatively friendly for small to medium-sized teams.

Pros & Cons

Pros include dynamically revealing real attack paths rather than performing static configuration checks; using pure API calls and supporting custom boundaries makes the testing process safe and controllable. Cons are that it only supports AWS as a single cloud provider; it requires high-privilege initial credentials, creating a higher trust threshold for the SaaS platform; and having a SaaS handle sensitive data may raise compliance concerns.

Who It's For

Suitable for security teams and DevOps engineers in mid-to-large enterprises with complex AWS architectures who need to deeply verify cloud environment isolation and permission boundaries.

Access from China

As an overseas SaaS, the network conditions for accessing its management console from China are unknown (it is presumed that a proxy is required to access the platform and AWS APIs). Payment methods are not explicitly stated, but typically an international credit card is required. Domestic alternatives include open-source CSPM tools like Prowler or local cloud security platforms.