serverless

Is your AWS Account vulnerable to the newest attack presented at Black Hat 2021?

By Manuel Benz & Johannes Späth

In this article we are demonstrating a new confused deputy attack against AWS Serverless Application Repository Apps and how to find and fix the underlying vulnerabilty.

How to Exploit Code Injection Vulnerabilities in Serverless Goat

By Andreas Dann

This article is part one of a series on how to prevent code injection attacks against Serverless applications using AWS Web application firewalls.

How to Prevent Code Injection Vulnerabilities in Serverless Applications (Part 2/2)

By Manuel Benz

This article is part two of a series on how to prevent code injection attacks against Serverless applications using AWS Web application firewalls.

How to Prevent Code Injection Vulnerabilities in Serverless Applications (Part 1/2)

By Manuel Benz

This article is part one of a series on how to prevent code injection attacks against Serverless applications using AWS Web application firewalls.

ServerlessGoat Java

By Andreas Dann

We released a- Java adaption of the OWASP Serverless Goat in our GitHub Repo.

-->