Chapter 7: Assessing and Pentesting Lambda Services
Lambda services run code that can later respond to events and other tasks within the Lambda environment as needed. These events and tasks are anything that occurs within the AWS environment – HTTP requests, modifications to S3 buckets, and new EC2 instances being brought up, for instance. This makes Lambda an essential service when it comes to setting up and extending a network and its services for an organization. However, Lambda does present some issues, such as creating weak restrictions on accessing Lambda, vulnerable functions that can carry out unauthorized actions, and rules built within the Lambda policies that allow exploitation to occur.
This chapter will focus on how vulnerability ...
Get AWS Penetration Testing now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
