🔥 3-day streak
CompTIA PenTest+ (PT0-003)5 / 175
Question 5 of 175

During a cloud-focused engagement, you obtain a set of AWS access keys from a compromised developer laptop. Before pivoting, you want to passively determine which permissions the key set actually holds without triggering obvious changes to the environment. Which action is the MOST appropriate first step to enumerate the effective permissions of these credentials?

Reviewed for accuracy · Report an issueNext question