AWS - Lambda Post Exploitation
Lambda
For more information check:
pageAWS - Lambda EnumSteal Others Lambda URL Requests
If an attacker somehow manage to get RCE inside a Lambda he will be able to steal other users HTTP requests to the lambda. If the requests contain sensitive information (cookies, credentials...) he will be able to steal them.
pageAWS - Steal Lambda RequestsSteal Others Lambda URL Requests & Extensions Requests
Abusing Lambda Layers it's also possible to abuse extensions and persist in the lambda but also steal and modify requests.
pageAWS - Abusing Lambda ExtensionsLast updated