Lambda

Published on
March 18, 2026
CWL - SNS PubSub Intrigue
cyberwarfarelabs cloud aws awscli s3 lambda sns lambda-logs
The challenge provides Access Keys that allows for IAM enumeration that leads to a policy that has permissions for S3, Lambda functions and Amazon SQS. Early enumeration restricts S3 object exfiltration but allows downloading the source code of a Lambda function which reveals sensitive arguments that can be published to the SQS service that invokes a Lambda function that reveals the flag in the Lambda Function logs
Published on
March 11, 2026
CWL - Abusing SSM Parameter Access
cyberwarfarelabs cloud aws awscli ssm lambda
The challenge provides Access Keys that allows for IAM enumeration that leads to a Lambda permission which allows the user to access the source code of the Lambda function. Next, another crucial permission was present that allowed them to view a sensitive SSM parameter that ultimately allows for invoking the Lambda function that reveals the flag
Published on
February 1, 2026
CWL - Lamba Escalation
cyberwarfarelabs cloud AWS AWSCLI Lambda
The challenge provides Access Keys that are used to authenticate to the AWS instance and enumerate AWS IAM resources & Lambda function permissions. Leveraging those permissions, we can invoke a Lambda function to retrieve the hidden flag

CWL - SNS PubSub Intrigue