AWS SAM
Analyse the configuration of your AWS Serverless Application Model files.
Visualize, analyze and secure the Resources and Data-Flows
of your Serverless Code with every change.
We have prepared a guided preview for you and collected answers to frequently asked questions.
Get an overview of which JSON objects and data your AWS resources exchange. CodesShield generates easy to understand architecture diagrams directly from your SAM, CloudFormation files and source code.
Use them to easily troubleshoot API and security issues, verify your implementation or visualize your architecture for QA and audits.
To provide detailed insights, CodeShield applies static-analysis to track the data flow between your Serverless functions and the cloud infrastructure.
Know your sensitive data-flows better than your attacker. Detect event-data injections during development.
CodeShield discovers OWASP SAS-10 vulnerabilities even if they span across multiple functions. Vulnerabilities are visualized in your architecture and your code.
Get informed about known vulnerabilities in used open-source software immediately.
CodeShield detects known vulnerabilities (CVEs) in the used open-source software, assesses their risk, and suggests updates.
Analyse the configuration of your AWS Serverless Application Model files.
Analyse the configuration of your AWS CloudFormation files.
Run code analysis on your Java source-/bytecode.
Run code analysis on your node.js code.
Integrate with GitHub.
By Manuel Benz on November 25, 2020
This article is part one of a series on how to prevent code injection attacks against Serverless applications using AWS Web application firewalls.
By Andreas Dann on November 6, 2020
We released an Java adaption of the OWASP Serverless Goat in our GitHub Repo.
By Johannes Späth on October 26, 2020
In this article, we explain the myth behind false positives and discuss two types of false positives.
By Manuel Benz on June 16, 2020
Jetzt wo die Corona-App offiziel veröffentlicht ist, dürfen wir über unsere Ergebnisse sprechen.