Serverless Prey - Serverless Functions For Establishing Reverse Shells To Lambda, Azure Functions, And Google Cloud Functions

Serverless Prey is a collection of serverless functions (FaaS), that, once launched to a cloud environment and invoked, establish a TCP reverse shell, enabling the user to introspect the underlying container:

• Panther: AWS Lambda written in Node.js
• Cougar: Azure Function written in C#
• Cheetah: Google Cloud Function written in Go

This repository also contains research performed using these functions, including documentation on where secrets are stored, how to extract sensitive data, and identify monitoring / incident response data points.

Disclaimer
Serverless Prey functions are intended for research purposes only and should not be deployed to production accounts. By their nature, they provide shell access to your runtime environment, which can be abused by a malicious actor to exfiltrate sensitive data or gain unauthorized access to related cloud services.

Contributors
Eric Johnson - Principal Security Engineer, Puma Security
Brandon Evans - Senior Application Security Engineer, Asurion

Learning More

Download Serverless-Prey

via KitPloit

This article is the property of Tenochtitlan Offensive Security. Verlo Completo --> https://tenochtitlan-sec.blogspot.com

Related word

1. Install Pentest Tools Ubuntu
2. Hacker Tools For Pc
3. Hacker
4. Pentest Tools Download
5. Pentest Tools Apk
6. Pentest Tools Nmap
7. Hack Tool Apk No Root
8. Hacker Security Tools
9. Growth Hacker Tools
10. Nsa Hacker Tools
11. Hack Tools For Games
12. Hacker Hardware Tools
13. New Hacker Tools
14. Hacker Tools Apk Download
15. Hack Tools
16. Pentest Tools Github
17. Hacker Search Tools
18. Hacking Tools Windows
19. Hacking Tools And Software
20. Hacker Tools For Pc
21. Best Hacking Tools 2019
22. Hackers Toolbox
23. Hack Rom Tools
24. Hacker Tools Hardware
25. Pentest Tools Windows
26. Hacking Tools Usb
27. Top Pentest Tools