serverless-prey
Serverless exploits
A collection of cloud-based serverless functions designed to demonstrate reverse shell exploitation and security research for AWS, Azure, and GCP environments.
Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions
235 stars
18 watching
43 forks
Language: HCL
last commit: about 1 month ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 puresec/functionshield | A serverless security library that monitors and controls runtime environment interactions | 39 |
 globocom/functions | A serverless platform that executes code in isolated environments without worrying about infrastructure | 48 |
 reddec/trusted-cgi | An engine for running lightweight serverless applications with structured input and pre-defined response headers. | 230 |
 0x4d31/honeylambda | A simple serverless application designed to create and monitor fake HTTP endpoints for security testing | 511 |
| puresec/serverless-puresec-cli | Automates creation of secure IAM roles for AWS Lambda applications | 247 |
 codeshield-security/serverless-goat-java | A deliberately vulnerable Java application demonstrating common serverless security flaws | 12 |
 pedrib/poc | Contains public advisories, exploits, and code related to vulnerabilities and hacking. | 821 |
 owasp/serverless-goat | A proof-of-concept demonstration of common serverless security flaws and weaknesses | 319 |
 kristianfreeman/repo-hunt | A full-stack serverless application built with Cloudflare Workers | 46 |
 wickett/lambhack | A vulnerable serverless application in AWS Lambda demonstrating various security vulnerabilities | 94 |
 r3dxpl0it/cve-2018-4407 | Exploits a heap buffer overflow vulnerability in the XNU operating system kernel to cause a denial-of-service attack on iOS and macOS devices. | 35 |
 hipotermia/vaya-ciego-nen | Detects and exploits Blind Cross-site scripting (XSS) vulnerabilities to retrieve sensitive information and control user interactions. | 40 |
 cagataygurturk/lambadaframework | A framework for building and deploying JAX-RS-based REST APIs to AWS Lambda and API Gateway in a serverless manner | 243 |
 sslab-gatech/pwn2own2020 | An exploitation project demonstrating how to chain vulnerabilities in Safari to escalate privilege on macOS | 402 |
 grrrdog/sploits | A collection of Proof Of Concept exploits and demonstrations | 17 |