PureSec Blog (Launch)
PureSec, the leading Serverless Security Platform. Serverless application security blog. Learn how to protect your serverless architectures against attacks.
AWS Security Best Practices for API Gateway
API Gateway Overview AWS API Gateway enables developers to create, publish, maintain, monitor, and secure APIs. Together with AWS Lambda, API Gateway forms the app-facing part of the AWS serverless infrastructure ...
Quickly Gauge Your Serverless Security Readiness With This Short Quiz
The cloud-security world entered a new age with the introduction of serverless computing. While developers quickly embrace serverless to rapidly build and deploy cloud applications, security and risk management leaders are lagging ...
Serverless Security And The Weakest Link (Or How Not to Get Nuked by App-DoS)
Ory Segal, PureSec CTO | | Serverless - General, Serverless Security, Serverless Security Top 10 Guide
Here's a short blog post on design-for-failure, serverless scalability, App layer DoS and what happens when you rely on open source 3rd party libraries ...
Serverless And The Evolution In Cloud Security, How FaaS Differs From IaaS
Security is a shared responsibility between the cloud provider and the customer. This shared model can help relieve customer’s operational burden as cloud providers operate, manage and control the components from the ...
PureSec: 2018 Recap
As we're nearing the end of the year, it's time to look back and reflect on all the great things achieved during 2018. This year was remarkable for the Serverless security space, ...
OWASP ‘ServerlessGoat’: A Vulnerable Demo Serverless Application
Ory Segal, PureSec CTO | | AWS Lambda security, owasp, Serverless Security, serverlessgoat, vulnerable demo application
Throughout the years, the concept of creating vulnerable applications for learning and demonstrating application security concepts has become common practice . Years ago, OWASP launched the WebGoat project, which has since become ...
AWS Lambda Security Best-Practices eBook
PureSec releases a security awareness and education guide for organizations developing serverless applications on AWS Lambda As serverless adoption is expected to continue growing in 2019 and reach new audiences, PureSec sees ...
Security Considerations for AWS Lambda Runtime API and Layers
Let’s start with some background - ...
Tracing AWS SDK Calls With No Code Changes for AWS Lambda Security
There is a lot of buzz around Lambda function monitoring. You can find about a dozen companies that will provide you with very nice tools for debugging, profiling and monitoring of your ...
PureSec Collaborates with Amazon Web Services to Provide Zero-Overhead Application Security for AWS Lambda Customers
The new PureSec protection layer for AWS Lambda is designed to help AWS customers further secure their serverless applications against cyber-attacks with minimal effort and no operational overhead TEL AVIV, Israel, November ...