all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hacking AWS Account via AWS Lambda SSRF

Add to bookmarks
March 29, 2023, 3:27 a.m. | Sena Yakut

DEV Community dev.to

Server-side request forgery (SSRF) attack is used for abusing functionality on the server to read or update internal resources. The main idea behind an SSRF attack is to manipulate the input parameters of an application that interact with external systems, such as URLs, IP addresses, or file paths. By injecting a special URL that is important for internal systems, an attacker can force an application to access an internal resource that is not intended to be exposed. Besides SSRF is …

abusing access account addresses application applications attack aws aws lambda cloud cloud resources devops exposed external file forgery hacking important input internal ip addresses lambda main request resources security server server-side request forgery special ssrf systems threat update url urls web web applications

Visit resource

More from dev.to / DEV Community

Learning AWS Day by Day — Day 45 — Amazon DynamoDB — Part 1 4 hours ago | dev.to
amazon amazon dynamodb aws backup +21
How To Easily Remove a Password From a PDF file 7 hours ago | dev.to
advisor beginners can document +12
5 steps to learn to code successfully in 2024 9 hours ago | dev.to
article best practices career code +16
Useful Points 🥹 to Get Prepared for a Solution Architect Role 💼 9 hours ago | dev.to
architect beginners certified cloud +17
🚀 A Comprehensive Guide to Personalizing Your GitHub Profile README 9 hours ago | dev.to
developer digital github guide +7
Design a hybrid cloud solution (with image) 10 hours ago | dev.to
amp application aws cloud +24
Tableau Public VS Tableau Desktop Public Edition 11 hours ago | dev.to
app beginners desktop desktop app +9
Release Announcement: KeycloakClientBundle v2.0 12 hours ago | dev.to
announcement authentication authorization bundle +12
Random Password Generate 15 hours ago | dev.to
application conditions function javascript +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital - Major Hospital Account - Full-Time - Healthcare Security

@ Allied Universal | Anaheim, CA, United States
View on infosec-jobs.com

Product Security Lead

@ Lely | Maassluis, Netherlands
View on infosec-jobs.com

Summer Associate, IT Information Security (Temporary)

@ Vir Biotechnology, Inc. | San Francisco, California, United States
View on infosec-jobs.com

Director, Governance, Risk and Compliance - Corporate

@ Ryan Specialty | Chicago, IL, US, 60606
View on infosec-jobs.com

Cybersecurity Governance, Risk, and Compliance Engineer

@ Emerson | Shakopee, MN, United States
View on infosec-jobs.com
View more jobs