Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

Erlang

PHP

Swift

Rust

Shell

Assembly

Groovy

Perl

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

C++

F#

Lua

Jupyter Notebook

Nix

Python

Rust

Crystal

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇧🇼 Botswana

🇷🇪 Réunion

🇯🇲 Jamaica

🇯🇪 Jersey

🇭🇷 Croatia

🇲🇴 Macao

🇻🇦 Vatican City

🇰🇭 Cambodia

All Countries Compare Countries

pumasecurity/serverless-prey

Stars
233
Rank 171,449 (Top 4 %)
Language HCL
License
Mozilla Public Li...
Created almost 5 years ago
Updated 5 months ago

pumasecurity/serverless-prey

pumasecurity

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Serverless Functions for establishing Reverse Shells to Lambda, Azure Functions, and Google Cloud Functions

Puma Security Serverless Prey

Serverless Prey is a collection of serverless functions (FaaS), that, once launched to a cloud environment and invoked, establish a TCP reverse shell, enabling the user to introspect the underlying container:

Panther: AWS Lambda written in Node.js
Cougar: Azure Function written in C#
Cheetah: Google Cloud Function written in Go

This repository also contains research performed using these functions, including documentation on where secrets are stored, how to extract sensitive data, and identify monitoring / incident response data points.

Disclaimer

Serverless Prey functions are intended for research purposes only and should not be deployed to production accounts. By their nature, they provide shell access to your runtime environment, which can be abused by a malicious actor to exfiltrate sensitive data or gain unauthorized access to related cloud services.

Contributors

Eric Johnson - Principal Security Engineer, Puma Security

Brandon Evans - Certified Instructor, SANS Institute

Learning More

Featured At

RSA Conference 2020	serverlessDays Nashville 2020	SANS@Mic 03/25/2020

Video - Slide Deck	Video - Slide Deck	SANS.org

puma-scan

Puma Scan is a software security Visual Studio extension that provides real time, continuous source code analysis as development teams write code. Vulnerabilities are immediately displayed in the development environment as spell check and compiler warnings, preventing security bugs from entering your applications.

nymeria

Multicloud workload identity workshop

puma-prey

Puma Prey contains vulnerable .NET target applications to test the Puma Scan rules against. This project contains Web Forms, MVC5, and Core web applications that communicate with web services and data layer applications.