


Presented by:
Christophe Limpalair
Founder & Trainer at Cybr
Where this lab fits in our serverless security series
Step-by-step walkthrough of enumeration techniques in real AWS environments
Resources to keep learning
Let's wrap up!
Attackers enumerate Lambda functions to identify potential entry points and understand your serverless architecture
Examining IAM roles and execution contexts reveals privilege escalation paths
Vulnerable code, improper permissions, and function misconfigurations can lead to exploitation
We've designed this series to help security teams understand attack vectors against AWS Lambda functions to develop effective defense strategies.
We recommend going through these in the order shown from left to right
More advanced labs building on the prior ones and involving various attack techniques:


Cybr
AWS Lambda Security Labs - Cybr
Learn first-hand how attackers exploit AWS Lambda functions with real-world attack vectors and techniques. This course is entirely made up of 🧪 Hands-On Labs featuring vulnerable Lambda environments that will teach you how to identify and exploit serverless security weaknesses. Each lab deploys real AWS environments where you'll practice Lambda enumeration, exploitation, and privilege escalation techniques. The labs include CTF-style challenges that will test your skills by providing realistic
This course has been added to our Red Team Learning Path

Upcoming events:

I hope this session provided valuable insights into AWS Lambda security. Remember to continue your learning journey and apply these techniques responsibly in your environments!
Questions? Reach out to us on Discord → https://cybr.com/discord
Want more cloud security tips, tricks, and content?
← Connect with me on LinkedIn!

Hands-On Lambda Enumeration: Find Risky Functions in AWS