πŸ”Έ
Serverless security
CloudDefense serverless scan provides an AWS Lambda auditing in terms of statistical analysis, AWS service dependencies, and configuration checks from the security perspective.
Usage:
1
NAME:
2
cdefense serverless - Serverless scan of a given lambda function
3
​
4
USAGE:
5
cdefense serverless [command options] [arguments...]
6
​
7
OPTIONS:
8
--api-key value, -a value Api Key for Cloud Defense server ("75a81a24-adfc-4bfd-8b32-7562169a9759") as example
9
--project-name value, -p value Name of the project
10
--access-id value, -i value Access id from AWS
11
--access-secret value, -s value Access secret value from AWS
12
--function-name value, -f value ARN function name from AWS
13
--verbose, -v Detailed verbose messages (default: false)
14
15
​
Copied!
Example:
1
cdefense serverless --api-key=<api-key> --project-name=<project name> --access-id=<id> --access-secret=<secret> --function-name=<ARN>
Copied!
To check the work create a new account in AWS, deploy the vulnerable serverless application, and follow steps to get the required info
Last modified 2mo ago
Copy link