Is serverless insecure? Let's find out
In Summary : This is a simple AWS lambda function that does a straight exec. Essentially giving you a shell directly in my AWS infrastruc...
https://updatesinfosec.blogspot.com/2018/09/is-serverless-insecure-lets-find-out.html
In Summary :
This is a simple AWS lambda function that does a straight exec. Essentially giving you a shell directly in my AWS infrastructure to just run your commands. A security teams worst nightmare.
Do whatever you want. Ultimate goal: take over the account, escalate privs or find some sensitive info. [...]
kindly refer the following link as follow up :
https://ift.tt/2nOIYHF
This is a simple AWS lambda function that does a straight exec. Essentially giving you a shell directly in my AWS infrastructure to just run your commands. A security teams worst nightmare.
Do whatever you want. Ultimate goal: take over the account, escalate privs or find some sensitive info. [...]
kindly refer the following link as follow up :
https://ift.tt/2nOIYHF
