Skip to content

zenitysec/lambda-persistency-poc

 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
 
 
 
 
 
 
 
 

Repository files navigation

lambda-persistency-poc

See Twistlock Labs for more info.

A repository containing two PoCs of an attacker gaining persistency on a vulnerable AWS python Lambda.

Both PoCs compromise a Lambda instance by replacing the bootstrap process (the Lambda runtime) with a malicious version.

  • poc - a PoC relying on an RCE primitive that executes code in the context of the vulnerable function
  • exteranl_process_poc - a PoC relying on an RCE primitive that executes code in a child proccess of the vulnerable function

Releases

No releases published

Packages

No packages published

Languages

  • Python 99.8%
  • Shell 0.2%