diff --git a/Methodology and Resources/Cloud - AWS Pentest.md b/Methodology and Resources/Cloud - AWS Pentest.md
index cf121bec2e..6129a3f4b5 100644
--- a/Methodology and Resources/Cloud - AWS Pentest.md	
+++ b/Methodology and Resources/Cloud - AWS Pentest.md	
@@ -197,6 +197,17 @@
     find_admins: Look at IAM policies to identify admin users and roles, or principals with specific privileges
     ```
 
+* [Cognito Scanner](https://github.com/padok-team/cognito-scanner) - A CLI tool for executing attacks on cognito such as *Unwanted account creation*, *Account Oracle* and *Identity Pool escalation*.
+    ```bash
+    # Installation
+    $ pip install cognito-scanner
+    # Usage
+    $ cognito-scanner --help
+    # Get information about how to use the unwanted account creation script
+    $ cogntio-scanner account-creation --help
+    # For more details go to https://github.com/padok-team/cognito-scanner
+    ```
+
 * [dufflebag](https://labs.bishopfox.com/dufflebag) - Find secrets that are accidentally exposed via Amazon EBS's "public" mode
 * [NetSPI/AWS Consoler](https://github.com/NetSPI/aws_consoler) - Convert AWS Credentials into a console access