Skip to content

twistlock/lambda-persistency-poc

1 Branch0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

yuvalavrayuvalavra
Update README.md
Feb 26, 2021
3788c3e · Feb 26, 2021

History

12 Commits
external_process_poc
external_process_poc
Sep 6, 2019
poc
poc
Sep 4, 2019
LICENSE
LICENSE
Feb 26, 2021
README.md
README.md
Feb 26, 2021

Repository files navigation

lambda-persistency-poc

See Twistlock Labs for more info.

A repository containing two PoCs of an attacker gaining persistency on a vulnerable AWS python Lambda.

Both PoCs compromise a Lambda instance by replacing the bootstrap process (the Lambda runtime) with a malicious version.

  • poc - a PoC relying on an RCE primitive that executes code in the context of the vulnerable function
  • exteranl_process_poc - a PoC relying on an RCE primitive that executes code in a child proccess of the vulnerable function

About

PoC for gaining persistency on vulnerable Lambdas

unit42.paloaltonetworks.com/gaining-persistency-vulnerable-lambdas/

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

32 stars

Watchers

4 watching

Forks

10 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages