Renowned thinker Simon Wardley predicts that Serverless will win the war in the world of application architectures. To a certain extent, his prediction about Serverless fundamentally changing how businesses are built around technology has already been realized. Organizations large and small are deploying Functions as a Service (FaaS) to run full stack apps on the cloud.
However, despite few management and security benefits, Serverless apps require serious security consideration. For one, the attack surface in a Serverless landscape is quite different from a standard web application. Additionally, lack of secure frameworks necessitates deeper thought and effort involving security.
This webinar will shed light on security considerations for Serverless applications. we45's popular open-source project "Damn Vulnerable Functions as a Service" (DVFaaS) will be used to demonstrate various vulnerabilities and attack possibilities with serverless functions.
Who should attend: Developers, DevOps Engineers, Penetration Testers and Security practitioners who use Serverless technology as part of their product deployments.
Key Takeaways: This webinar is intended to help attendees understand offensive and defensive techniques for securing Serverless deployments. In addition to illustrating the large attack surface associated with these apps, Abhay Bhargav(twitter-@abhaybhargav) will demonstrate DVFaaS(Damn Vulnerable Function as a Service), we45's open-source intentionally vulnerable Serverless functions for attendees to deploy and pwn!