Explore the attack surface of AWS Lambda Function as a Service (FaaS) platform in this 49-minute conference talk from LASCON. Delve into the growing FaaS market and its forecasted valuation while examining the potential security risks associated with Lambda's extensive resource access capabilities. Learn how to identify and exploit vulnerabilities, including methods for hijacking and impersonating Lambda functions, gaining persistent remote access to AWS cloud environments, and reverse engineering the Lambda runtime environment. Gain insights into the unintended consequences of FaaS platforms and understand the importance of robust security measures in cloud infrastructure deployments.
Overview
Syllabus
2018 - The FaaS and the Curious
Taught by
LASCON