Bookmarks
Tag cloud
Picture wall
Daily
RSS Feed
  • RSS Feed
  • Daily Feed
  • Weekly Feed
  • Monthly Feed
Filters

Links per page

  • 20 links
  • 50 links
  • 100 links

Filters

Untagged links
18 results tagged aws  ✕   ✕
ccbrown/cloud-snitch https://github.com/ccbrown/cloud-snitch
Thu 24 Apr 2025 02:30:29 PM PDT archive.org

Cloud Snitch provides a sleek and intuitive way of exploring your AWS account activity. It's a great addition to any toolbox, regardless of if you're a hobbyist that's just getting started with the cloud or a large enterprise with complex and mature cloud infrastructure.

Share links to IP address, CIDR network, and AWS principal activity within your team. Document AWS principals with Markdown notes for your teammates. Cloud Snitch provides summaries of activity by AWS region, principal, IP address, and CIDR network. Errors are highlighted, so you can quickly spot suspicious behavior or bugs in your code. Take the investigation further with quick links into to your CloudTrail event history.

devops aws sysadmin inventory mapping resources activity typescript webapps
Last Week in AWS https://www.lastweekinaws.com/
Thu 20 Mar 2025 12:39:50 PM PDT archive.org

Chief Cloud Economist Corey Quinn goes through the torrent of news about Amazon’s cloud ecosystem and strains out the noise. Then he takes what’s left and gently and lovingly makes fun of it. The world of cloud takes itself far too seriously. We aim to change that.

RSS: https://www.lastweekinaws.com/feed/

I don't know if the newsletter is different from the site's blog or not.

aws blogs announcements ecosystems podcasts newsletters
aminohealth/wonk https://github.com/aminohealth/wonk
Sat 22 Feb 2025 07:43:22 PM PST archive.org

Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets.

Basically it helps you figure out IAM policies that'll fit AWS' limits (not more than 6k characters long, users can't be in more than 10 groups, objects can't have more than 10 roles applied to them, no object can have more than 10 policies, SSO authentication limits each account to only one role).

aws policy analysis python limits sysadmin
AWSregion.info https://awsregion.info/
Thu 16 Jan 2025 01:19:39 PM PST archive.org

A list of all of AWS' regions around the world. Mirrored from here: https://aws.amazon.com/about-aws/global-infrastructure/

aws sysadmin regions reference
AWS Security Bulletins https://aws.amazon.com/security/security-bulletins/
Tue 19 Nov 2024 09:11:41 AM PST archive.org

AWS publishes security bulletins for its various components. I didn't know they did that; nice surprise.

RSS: https://aws.amazon.com/security/security-bulletins/rss/feed/

sysadmin aws infosec vulnerabilities cve tracking feeds
xssfox/waterfall-cw-logs https://github.com/xssfox/waterfall-cw-logs/
Sat 26 Oct 2024 07:42:49 PM PDT archive.org

A Jupyter notebook that noodles over using waterfall visualizations to analyze AWS Cloudwatch logs. Uses Matplotlib and Numpy.

python visualization analysis aws cloudwatch
aws/aws-sdk-go-v2/aws https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/aws
Fri 08 Mar 2024 09:37:55 AM PST archive.org

Documentation for the Go AWS SDK library.

documentation golang aws sdk libraries
Importing Existing Infrastructure Into Terraform – Step by Step https://spacelift.io/blog/importing-exisiting-infrastructure-into-terraform
Wed 21 Feb 2024 10:00:34 AM PST archive.org

In this tutorial, you will learn ways to import pre-existing cloud resources before you continue to develop the IaC in Terraform. This guide will provide you with an IaC import scenario which is often faced by teams starting to adopt Terraform for their operations.

terraform aws import archived howto infrastructure devops sysadmin
AWS Security Best Practices https://aws.github.io/aws-security-services-best-practices/
Sun 14 Jan 2024 01:11:48 PM PST archive.org

As AWS security professionals we are often asked by customers to validate their use of AWS security services and to give tips and tricks on how to use these services and how others use AWS security services. With this guide we have the goal of more broadly sharing this knowledge with the user community and at the same time give the ability for others outside of AWS to contribute.

Simply, we will be covering best practices for configuring AWS security services. This is NOT overall AWS security best practices. This documentation is not simply a numbered list of best practices. Instead this documentation is meant to walk you through what you need to know before deploying an AWS security service to what you should be doing after enablement and through fully operationalizing the service. Often this is done through discussing different use cases and different factors associated with specific use cases that can help in making design decisions. Following this guide you should feel confident that you have the ability configure and use an AWS security service effectively.

aws devops sysadmin bestpractices configuration applications
secengjeff/awskillswitch https://github.com/secengjeff/awskillswitch
Thu 30 Nov 2023 02:09:34 PM PST archive.org

AWS Kill Switch is a Lambda function (and proof of concept client) that an organization can implement in a dedicated "Security" account to give their security engineers the ability to delete IAM roles or apply a highly restrictive service control policy (SCP) on any account in their organization.

The actions you take with this tool are one-way operations. Do not test/experiment in production. Any SCPs applied or IAM roles deleted will remain in this state until manual action is taken to remove the SCP or recreate deleted role and/or policies. Ensure that you have the the ability to reverse these changes and incorporate the appropriate steps in your incident response playbooks.

If you need to lock down and lock out an AWS environment, this will do it for you, but it's the nuclear option.

golang aws infosec emergencies policy lambda
oguzhan-yilmaz/balcony https://github.com/oguzhan-yilmaz/balcony
Thu 27 Jul 2023 03:10:04 PM PDT archive.org

Balcony is a modern CLI tool that with some killer features:

  • Auto-fill the required parameters for AWS API calls
  • Read the JSON data of any AWS resource in your account
  • Generate Terraform Import Blocks
  • Generate actual .tf Terraform Resource code

Balcony uses read-only operations, it does not take any action on the used AWS account.

python cli aws sysadmin terraform analysis generator
AWS ^honest^ Service Status Dashboard https://stop.lying.cloud/
Fri 10 Dec 2021 03:44:27 PM PST archive.org

An actually accurate AWS service dashboard.

services dashboard aws status
trustoncloud/threatmodel-for-aws-s3 https://github.com/trustoncloud/threatmodel-for-aws-s3
Thu 26 Aug 2021 08:36:14 PM PDT archive.org

The last S3 security document that we’ll ever need, and how to use it.

aws s3 threats modeling infosec handbook
Public buckets by grayhatwarfare https://buckets.grayhatwarfare.com/
Sat 29 Jun 2019 10:03:25 PM PDT archive.org

A search engine for open and unsecured Amazon S3 buckets.

Has a REST API. Have a key.

searchengine s3 aws buckets data infosec search rest api
Amazon EC2 Instance Comparison https://instances.vantage.sh/
Tue 03 Apr 2018 11:40:42 AM PDT archive.org
amazon aws ec2 cloudcomputing comparisons chart it devops
Default ssh Usernames For Connecting To EC2 Instances · Alestic.com https://alestic.com/2014/01/ec2-ssh-username/
Tue 20 Mar 2018 12:20:46 AM PDT archive.org

A list of default usernames for Linux AMI's in Amazon's EC2.

  • Amazon Linux - ec2-user
  • Ubuntu - ubuntu, root
  • Debian - admin, root
  • RHEL 6.4 and later - ec2-user
  • RHEL 6.3 and earlier - root
  • Fedora - fedora, ec2-user, root
  • Centos - centos, root
  • SUSE- ec2-user, root
  • BitNami - bitnami
  • TurnKey - root
  • NanoStack - ubuntu
  • FreeBSD - ec2-user
  • OmniOS - root
ami aws devops sysadmin accounts ec2 linux ssh
/ip-ranges.json https://ip-ranges.amazonaws.com/ip-ranges.json
Mon 19 Mar 2018 05:09:27 PM PDT archive.org

Amazon makes available a hidden API endpoint which lists the IP address ranges used for EC2.

zones data aws exocortex amazon api ec2 list
obsrvbl/flowlogs-reader: Python library to make retrieving Amazon VPC Flow Logs from CloudWatch Logs a bit easier. https://github.com/obsrvbl/flowlogs-reader
Mon 19 Mar 2018 03:19:13 PM PDT archive.org

Python module that interfaces directly with AWS FlowLogs.

python modules aws flowlogs interface
6298 links, including 411 private
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service by the Shaarli community - Theme by kalvn