The number of requests varies greatly depending on the size of the AWS account and number of resources within it. At a minimum, CloudSploit will make approximately 50 API calls per region (assuming a default scan where all plugins are enabled). From there, additional API calls are made to query specific resources. For example, if ELBs are found, an API call needs to be made for each ELB to determine its SSL Cipher Suite policy.

CloudSploit makes every effort to make the absolute minimum number of API calls necessary. We cache the results of each call during a scan, so that other plugins relying on the same data do not repeat the same call. We also work carefully to stay under the AWS API rate limit. Rest assured, CloudSploit scans will not impact your account resources since the calls are being made to the AWS APIs and not the resources directly.