It is, unfortunately, extremely common for customers and enterprises operating in AWS to have chosen a workload/storage bearing account (more than likely, the main production account) as the Organization Management Account (formerly known Organization "Master" account, before AWS adopted better naming).
Many customers and companies operating in AWS made this decision in 2018 or so and its unforunately not something that can be easily changed as of 2024. Many customers have requests to AWS to make a friendly path for rehoming the Org Management account, but last I heard it is still not prioritized. Thus, we as customers are left to go through the nerve-wracking, if not dangerous process of migrating to a new AWS Organization in order to align with modern best practices and reduce common privilege escalation and account to account lateral movement concerns (made worse if you happen to have enabled things like Cloudformation Stacksets, Control Tower, or other powerful services in the same
Dean Malan deanmalan
houey
/ aws_organizations_migration_notes.md
Last active
February 11, 2025 01:17
alexpearce
/ app.py
Created
June 17, 2022 03:08
FastAPI application demonstrating proper Bearer token usage.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import typing as t | |
| from fastapi import Depends, FastAPI, Header, HTTPException | |
| from fastapi.security.http import HTTPAuthorizationCredentials, HTTPBearer | |
| from pydantic import BaseModel | |
| from starlette import status | |
| app = FastAPI() | |
| # Placeholder for a database containing valid token values |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MIT License | |
| Copyright (c) 2021 AJ Kerrigan | |
| Permission is hereby granted, free of charge, to any person obtaining a copy | |
| of this software and associated documentation files (the "Software"), to deal | |
| in the Software without restriction, including without limitation the rights | |
| to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | |
| copies of the Software, and to permit persons to whom the Software is | |
| furnished to do so, subject to the following conditions: |
hoffa
/ parsing-apple-health-data.md
Last active
May 5, 2025 11:50
If you’ve ever wanted to analyze your own health data, here’s how.
- Open the Health app.
- Tap on your profile in the top right.
- Tap Export All Health Data.
- Share the archive with yourself (e.g. via AirDrop, Files, Mail, etc.).
miguelgrinberg
/ sqlalchemy-challenge.py
Last active
October 18, 2022 06:51
A little SQLAlchemy challenge. See blog post at https://blog.miguelgrinberg.com/post/nested-queries-with-sqlalchemy-orm for details!
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| # Before you run this script make sure Flask-SQLAlchemy is installed in | |
| # your virtual environment | |
| from flask import Flask | |
| from flask_sqlalchemy import SQLAlchemy | |
| app = Flask(__name__) | |
| app.config['SQLALCHEMY_DATABASE_URI'] = 'sqlite:///' # in-memory |
EdOverflow
/ github_bugbountyhunting.md
Last active
May 8, 2025 01:11
My tips for finding security issues in GitHub projects.
GitHub repositories can disclose all sorts of potentially valuable information for bug bounty hunters. The targets do not always have to be open source for there to be issues. Organization members and their open source projects can sometimes accidentally expose information that could be used against the target company. in this article I will give you a brief overview that should help you get started targeting GitHub repositories for vulnerabilities and for general recon.
You can just do your research on github.com, but I would suggest cloning all the target's repositories so that you can run your tests locally. I would highly recommend @mazen160's GitHubCloner. Just run the script and you should be good to go.
$ python githubcloner.py --org organization -o /tmp/output
vfulco
/ dokku_on_do.md
Created
May 18, 2017 08:03
— forked from kmctown/dokku_on_do.md
Dokku Setup on DigitalOcean
Notes on spinning up a new dokku server on DO. Inspired by this blog post by Bryan Kennedy.
eyecatchup
/ id3-ffmpeg.md
Last active
May 13, 2025 01:26
A quick guide on how to read/write/modify ID3 metadata tags for audio / media files using ffmpeg.
FFmpeg has a free-form command line option that allows the user to specify key-value-pairs for encoding metadata. Let's take a look.
To list all global metadata tags for a media file, just set an input but no output file.
thegitfather
/ vanilla-js-cheatsheet.md
Last active
April 28, 2025 16:22
Vanilla JavaScript Quick Reference / Cheatsheet
Just migrated it from Codepen.io to markdown. Credit goes to David Conner.
| Working with DOM | Working with JS | Working With Functions |
|---|---|---|
| Accessing Dom Elements | Add/Remove Array Item | Add Default Arguments to Function |
| Grab Children/Parent Node(s) | Add/Remove Object Properties | Throttle/Debounce Functions |
| Create DOM Elements | Conditionals |
skratchdot
/ badges.md
Last active
January 3, 2024 21:02
A list of badges to add to a Github README.md file
A list of some other badges: http://shields.io/
NewerOlder