Detect runtime threats in Python Lambda functions with Datadog AAP

Python AWS Lambda functions are ephemeral and highly distributed, which creates security visibility gaps that traditional perimeter defenses and proxy-based controls struggle to fill. Techniques such as credential stuffing, SQL injection, and server-side request forgery (SSRF) can look like legitimate application traffic, making them difficult to identify without visibility inside the application itself.

To help solve this challenge, Datadog App and API Protection (AAP) now extends full in-process application security monitoring to Python Lambda functions. By integrating directly with your application runtime through Datadog tracing libraries, AAP provides deeper insight into how requests interact with your code. This in-process visibility enables you to detect exploit attempts, correlate them with vulnerable code paths, and respond with higher confidence.

In this post, we’ll explore how AAP helps you:

Increase visibility in Lambda environmentsDetect successful injection attacks with Exploit PreventionIdentify and respond to account takeover attempts

Increase visibility in Lambda environments

Detect runtime threats in Python Lambda functions with Datadog AAP | Datadog

Related reading

Introducing the Datadog Code Security MCP | Datadog

AI in cloud security investigations: The role of UEBA and better telemetry |…

Lambda Execution Roles Are Quietly Breaking Your Least Privilege Policy

Spotting CI/CD misconfigurations before the bots do: Securing GitHub Actions…

Amazon Is Using Specialized AI Agents for Deep Bug Hunting

AWS launches frontier agents for security testing and cloud operations | Amazon…