Skip to content
/ poor-webhook Public

An example of a vulnerable slack bot that runs in AWS lambda.

License

MPL-2.0 license
19 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ThreatResponse/poor-webhook

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
bot.py
bot.py
 
 
handler.py
handler.py
 
 
mention.py
mention.py
 
 
package.json
package.json
 
 
requirements.txt
requirements.txt
 
 
serverless.yml
serverless.yml
 
 

Repository files navigation

Vulnerable Slack Bot example created for Black Hat USA 2017

Contributors

Andrew Krug @andrewkrug

Deployment

sls deploy

Invocation

curl <host>/posts
curl <host>/posts/5

Tips & Tricks

help command

Just use it on anything:

sls  help

or

sls <command> --help

deploy function command

Deploy only one function:

sls deploy function -f <function-name>

logs command

Tail the logs of a function:

sls logs -f <function-name> -t

info command

Information about the service (stage, region, endpoints, functions):

sls info

invoke command

Run a specific function with a provided input and get the logs

sls invoke -f <function-name> -p event.json -l

About

An example of a vulnerable slack bot that runs in AWS lambda.

Resources

Readme

License

MPL-2.0 license
Activity
Custom properties

Stars

19 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages