Welcome to the next episode of our Cloud Forensics training — this time on responding to compromises in AWS Lambda:
What logging is there of Lambda functions?
How CloudWatch structures logs
Lambda automatically streams details about each function invocation, along with logs and other output from your…
Denonia Lambda Malware
- Named “python”
- DNS over HTTPs
- Custom Monero server 184.108.40.206:3333
- Run XMRig from memory
- Writes config to hidden file at /tmp/.config.json
How do you Acquire a Lambda function in Cado?
How do you analyze Lambda in Cado?
Lambda in Cado
How do you use Lambda for Incident Response?