Now that we have covered attacking Lambda functions while you only have read access to Lambda, we will move on to read and write access. In this scenario, we are going to assume that you, as the attacker, have "lambda:*" permissions, which basically means that you can read and write anything, which includes editing existing functions, creating your own functions, deleting functions, and so on. This opens a whole new attack surface that is prime for many different attacks, particularly privilege escalation, data exfiltration, and persistence.

For this section, we won't be setting up a new vulnerable function, but instead we will just use what we set up previously for a few demos.