[hsbauauvhabzb]

Microsoft or AWS may also use telemetry to flag you also.

[g3ol4d0]

Never thought of this. I constantly scan the internet using nmap, or similar, for pentest/bug bounty and never had a problem

[ALittleLight]

How are you pentesting without knowing the IPs of your in-scope targets?

[WJW]

If your scope is wide enough, everything is in-scope.

[g3ol4d0]

Some times you get a IP Range, or a domain-wide scope