Skip to content
/ lambhack Public
forked from wickett/lambhack

A very hackable serverless application in AWS Lambda

License

MIT license
6 stars 27 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

devsecops/lambhack

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
runner
runner
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
main.go
main.go
 
 

Repository files navigation

#lambhack A vulnerable serverless lambda application. This is certainly a bad idea to base any coding patterns of what you see here.

lambhack allows you to take advantage of our tried and true application security problems, namely arbitrary code execution, XSS, injection attacks aand more.

This first release only contains arbitrary code execution through the query string. Please feel free to contribute new vulnerabilities.

What can you do with lambhack?

See RSA preso > http://www.slideshare.net/wickett/serverless-security-are-you-ready-for-the-future

License

MIT License

Contributing

Send in PRs

Known Problems

I started out calling this thing serverless-audit but have renamed it lambhack. None of the code reflects this yet.

About

A very hackable serverless application in AWS Lambda

Resources

Readme

License

MIT license
Activity
Custom properties

Stars

6 stars

Watchers

4 watching

Forks

3 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 97.5%
  • Makefile 2.5%