Serverless Execution

Description

Adversaries may abuse serverless computing, integration, and automation services to execute arbitrary code in cloud environments. Many cloud providers offer a variety of serverless resources, including compute engines, application integration services, and web servers.

Products, Sensors, and Dependencies

ProductDependenciesData sourceAccess requiredProtocolData CollectedNotes
Tenable Cloud SecurityAWS IaaSRead-onlyHTTPSAWS policies

Attack Path Technique Details

Framework: MITRE ATT&CK

Family: Execution

Sub-Technique: Serverless Execution

Platform: AWS

Products Required: Tenable Cloud Security

Tenable Release Date: 2023 Q2