PureSec

Pinned Repositories

awesome-serverless-security
A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.
574 36 290
aws-parsecf
Parse AWS CloudFormation's intrinsic functions in the template
Language:Python12 14 48
FunctionShield
A Serverless Security Library for Developers. Regain Control Over Your AWS Lambda & Google Cloud Functions Runtimes.
38 9 1112
lambda-config-rules
4 AWS Config rules that will boost your AWS Lambda security posture. Created as a companion to the AWS Config blog post by PureSec.
Language:JavaScript17 5 14
lambda-proxy
Lambda-Proxy creates an HTTP proxy listening on localhost port 8082. When it receives an HTTP POST request with a very specific structure , it will parse the request, extract the relevant data required for the test, and will invoke your AWS Lambda function using the AWS SDK client.invoke() method. It was created for testing AWS Lambda functions with SQLMap as described here: https://www.puresec.io/blog/automated-sql-injection-testing-of-serverless-functions-on-a-shoestring-budget-and-some-good-music
Language:Python38 5 03
puresec-cli
PureSec CLI tools for improving the security of your serverless applications.
Language:Python15 10 268
puresec-s3-public-scanner
An AWS Lambda function that scans your account for S3 buckets with any kind of public permissions
Language:JavaScript4 5 01
sas-top-10
Serverless Architectures Security Top 10 Guide
329 23 046
serverless-puresec-cli
Serverless plugin for least privileges.
Language:JavaScript247 14 1211
vulenrable-app
A sample vulnerable Node.js AWS Lambda function
Language:Makefile5 6 02

PureSec's Repositories

puresec/awesome-serverless-security
A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.
574 36 290
puresec/sas-top-10
Serverless Architectures Security Top 10 Guide
329 23 046
puresec/serverless-puresec-cli
Serverless plugin for least privileges.
Language:JavaScript247 14 1211
puresec/FunctionShield
A Serverless Security Library for Developers. Regain Control Over Your AWS Lambda & Google Cloud Functions Runtimes.
38 9 1112
puresec/lambda-proxy
Lambda-Proxy creates an HTTP proxy listening on localhost port 8082. When it receives an HTTP POST request with a very specific structure , it will parse the request, extract the relevant data required for the test, and will invoke your AWS Lambda function using the AWS SDK client.invoke() method. It was created for testing AWS Lambda functions with SQLMap as described here: https://www.puresec.io/blog/automated-sql-injection-testing-of-serverless-functions-on-a-shoestring-budget-and-some-good-music
Language:Python38 5 03
puresec/lambda-config-rules
4 AWS Config rules that will boost your AWS Lambda security posture. Created as a companion to the AWS Config blog post by PureSec.
Language:JavaScript17 5 14
puresec/puresec-cli
PureSec CLI tools for improving the security of your serverless applications.
Language:Python15 10 268
puresec/aws-parsecf
Parse AWS CloudFormation's intrinsic functions in the template
Language:Python12 14 48
puresec/vulenrable-app
A sample vulnerable Node.js AWS Lambda function
Language:Makefile5 6 02
puresec/node-csocket
Port for C's sys/socket.h methods for synchronous usage of sockets as file descriptors.
Language:JavaScript4 7 01
puresec/puresec-s3-public-scanner
An AWS Lambda function that scans your account for S3 buckets with any kind of public permissions
Language:JavaScript4 5 01
puresec/lambda-auth0-authorizer
An AWS Custom Authorizer for AWS Gateway that support Auth0 Bearer tokens.
Language:JavaScript2 5 04
puresec/Serverless-Goat
OWASP ServerlessGoat: a serverless application demonstrating common serverless security flaws
Language:Python2 5 02
puresec/components
An easier way to build applications with cloud services. –
Language:JavaScript1 5 01
puresec/middy
🛵 The stylish Node.js middleware engine for AWS Lambda
Language:JavaScript1 5 01
puresec/serverless-sentry-lib
Language:JavaScript1 5 02
puresec/a-demo-app
Language:Makefile0 3 01
puresec/csocket-linux
Language:C++0 6 02
puresec/python-demo-app
Language:Python0 3 02
puresec/addressparser-malicious
Parse e-mail address fields with node.js
5 01
puresec/hello-retail
“Hello, Retail!” is an open-source, mobile-first, 100% serverless functional proof-of-concept showcasing a complete event sourcing approach applied to the retail platform space.
Language:JavaScript5 01
puresec/incubator-openwhisk-runtime-docker
Apache openwhisk
Language:Python5 01
puresec/KairoScope-Backend-Reading
The microservice for KairoScope. This service is in charge of reading's operations.
Language:JavaScript5 01
puresec/node-gyp-build
Build tool and bindings loader for node-gyp that supports prebuilds
Language:JavaScript5 01
puresec/secure-aws-lambda
Language:JavaScript5 01
puresec/serverless-application-model
AWS Serverless Application Model (AWS SAM) prescribes rules for expressing Serverless applications on AWS.
Language:Python5 01
puresec/serverless-azure-functions
Serverless Azure Functions Plugin – Add Azure Functions support to the Serverless Framework
Language:JavaScript5 01
puresec/serverless-plugin-ifelse
A Serverless Plugin to write If Else conditions in serverless YAML file
Language:JavaScript3 01
puresec/serverless-sentry-plugin
This plugin adds automatic forwarding of errors and exceptions to Sentry (https://sentry.io) and Serverless (https://serverless.com)
Language:JavaScript2
puresec/wg-serverless
CNCF Serverless WG
1