AWS on
Profile picture
amaan-ngp
Continuous AWS IAM Security Best Practices | CloudQuery www.cloudquery.io

Continious AWS IAM Security Practices


#security #aws #p #postgres

Show More
2 years ago
Link to note
amaan-ngp
Inherited AWS Account - CloudSecDocs cloudsecdocs.com

Inherited AWS Account best practices


#aws #p #security

Show More
2 years ago
Link to note
amaan-ngp
AWS Access Keys - A Reference - Nick Jones www.nojones.net

AWS Access Keys - A reference (Must Read)


#aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
Never put AWS temporary credentials in the credentials file (or env vars)—there’s a better way | by Ben Kehoe | Oct, 2021 | Medium ben11kehoe.medium.com

Never put AWS temporary credentials in the credentials file


#aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
Advanced AWS Networking: Pitfalls That You Should Avoid | cloudonaut cloudonaut.io
Advanced AWS Networking: Pitfalls That You Should Avoid


#aws #networking


Show More
2 years ago
Link to note
amaan-ngp
Pacu: The Open Source AWS Exploitation Framework - Rhino Security Labs rhinosecuritylabs.com

Pacu: AWS Exploitation framework


#aws #security

Show More
2 years ago
Link to note
amaan-ngp
Abort, Rollback...Retry? Upcoming updates to CloudFormation - Stelligent stelligent.com

AWS Cloudformation retrying/rollback resources to a previous good state #aws #cloudformation #p

Show More
2 years ago
Link to note
amaan-ngp
glassechidna/ghaoidc: Assumes roles in AWS that have useful role session tags github.com

Assume AWS roles in github actions


#ci/cd #aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
AWS Organizations - Checklist for 2021 - Chris Farris www.chrisfarris.com

AWS Organizations best practices! A must read!


#aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
Save 20% on EBS Costs by Migrating from GP2 to GP3 www.vantage.sh

Save Costs on AWS!! Lovely trick, believe me worth a watch !


#p #aws #cost-optimization #savings

Show More
2 years ago
Link to note
amaan-ngp
trufflesecurity/Trufflehog-Chrome-Extension github.com

Security Extension to check for AWS Credentials in JS


#aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
Victor Grenu on Twitter: "Pretty useful AWS CLI command to get AWS CloudWatch LogGroups sorted by size. 👷🏻‍♂️ 👇🏼 https://t.co/B5XK075bW8" / Twitter twitter.com

List AWS Cloudwatch loggroup size with AWS CLI


aws logs describe-log-groups --query "logGroups[*].{LogGroup:logGroupName,VolumeSize:storedBytes,RetentionInDays:retentionInDays} | reverse(sort_by(@, &VolumeSize))" --output table --profile $profile --region $region


#aws #bash-productivity #p

Show More
2 years ago
Link to note
amaan-ngp
aminohealth/wonk: Wonk is a tool for combining a set of AWS policy files into smaller compiled policy sets. github.com

Combine multiple AWS IAM Polices into a single policy set. Useful if you need to deal with multiple AWS Policies (AWS/Local) #aws #iam #security #p

Show More
2 years ago
Link to note
amaan-ngp
cloudgraphdev/cli: The universal GraphQL API and CSPM tool for AWS, Azure, GCP, K8s, and tencent. github.com

Generate graphql based cloud inventory, cloud costing and security compliance querying with graphql data. #aws #security #p

Show More
2 years ago
Link to note
amaan-ngp
Transfer Hosted Zone between AWS accounts lukasmartinelli.ch

Transfer hosted zone between AWS Accounts


#aws #p

Show More
2 years ago
Link to note
amaan-ngp
Migrating a hosted zone to a different AWS account - Amazon Route 53 docs.aws.amazon.com

Migrating Route53 records to a different account


#aws #p

Show More
2 years ago
Link to note
amaan-ngp
aws/eks-anywhere: Run Amazon EKS on your own infrastructure 🚀 github.com

EKS Kubernetes Anywhere


#kubernetes #aws #eks

Show More
2 years ago
Link to note
amaan-ngp
AirWalk-Digital/AWSXenos: AWSXenos will list all the trust relationships in all the IAM roles and S3 buckets github.com

Tighten AWS IAM Roles and S3 Bucket polices trust relationships #security #aws

Show More
2 years ago
Link to note
amaan-ngp
Working with storage for Amazon RDS DB instances - Amazon Relational Database Service docs.aws.amazon.com

Postgres RDS Storage Autoscaling factors/considerations & limitations #postgres #databases

Show More
2 years ago
Link to note
amaan-ngp
Using SSL with a PostgreSQL DB instance - Amazon Relational Database Service docs.aws.amazon.com

Postgres SSL settings #postgres #security #databases

Show More

Highlights

Requiring an SSL connection to a PostgreSQL DB instance You can require that connections to your PostgreSQL DB instance use SSL by using the rds.force_ssl parameter. By default, the rds.force_ssl parameter is set to 0 (off). You can set the rds.force_ssl parameter to 1 (on) to require SSL for connections to your DB instance. Updating the rds.force_ssl parameter also sets the PostgreSQL ssl parameter to 1 (on) and modifies your DB instance's pg_hba.conf file to support the new SSL configuration. You can set the rds.force_ssl parameter value by updating the parameter group for your DB instance. If the parameter group for your DB instance isn't the default one, and the ssl parameter is already set to 1 when you set rds.force_ssl to 1, you don't need to reboot your DB instance. Otherwise, you must reboot your DB instance for the change to take effect. For more information on parameter groups, see Working with DB parameter groups.
2 years ago
Link to note
amaan-ngp