Serverless architecture presents new security challenges. Some are equivalent to traditional application development, but others take on a new form. This means that both developers and attackers must start thinking differently in order to gain the upper hand. The Damn Vulnerable Serverless Application (DVSA) is a deliberately vulnerable, open-source tool, aimed to be an aid for security professionals in order to test their skills and tools in a legal environment.
In this talk, Tal will cover common attack vectors that have evolved, and after this talk, you will be able to deploy your own vulnerable app and have the basic skills needed to gain our serverless pen-testing advantage.
The presentation will be on Saturday, September 7th at 3pm. The conference is in Louisville, Kentucky, September 4 – September 8, 2019. Register here.