http://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html https://www.youtube.com/watch?v=_wiGpBQGCjU
Pull bucket names and check for public access
Drew Mace drewmace
drewmace
/ ec2_sg_rules.py
Created
September 30, 2021 12:14
— forked from amgill/ec2_sg_rules.py
Generate AWS Security Groups Rules Report of all the Security Groups, as Seen via AWS Web Console. Uses python 3 with boto3 to generate CSV.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/local/bin/python3 | |
| ###################################################################################################################### | |
| # Purpose: Generate rules report of all the security groups # | |
| # Input Params: None [Make sure to set AWS CLI session by populating env. vars. with keys.] # | |
| # Usage: ./ec2_sg_rules.py > account-date.csv [python ./ec2_sg_rules.py > gill-dev-sg-2018-04-11.csv] # | |
| # Author: Abdul Gill # | |
| # Doc. Ref: http://boto3.readthedocs.io/en/latest/reference/services/ec2.html#EC2.Client.describe_security_groups# | |
| ###################################################################################################################### | |
| from __future__ import print_function |
drewmace
/ security-group-cleanup.py
Created
September 30, 2021 01:37
— forked from ymcdull/security-group-cleanup.py
A simple python file to clean up all unused AWS security groups with boto3
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import boto3 | |
| ### ### | |
| # Need aws credentails already been configured # | |
| ### ### | |
| ### Code based on https://gist.github.com/miketheman/2630437 | |
| client = boto3.client('ec2') |
drewmace
/ aws cli cheatsheet.md
Created
September 30, 2021 01:33
— forked from vortexau/aws cli cheatsheet.md
drewmace
/ stale_security_groups.py
Created
September 30, 2021 01:31
— forked from pierreozoux/stale_security_groups.py
Script to detect stale AWS security groups
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| import boto3 | |
| import argparse | |
| class StaleSGDetector(object): | |
| """ | |
| Class to hold the logic for detecting AWS security groups that are stale. | |
| """ | |
| def __init__(self): | |
| super(StaleSGDetector, self).__init__() |
drewmace
/ EC2-Stopped-Tagged-Lambda.py
Created
August 27, 2021 01:41
— forked from mlapida/EC2-Stopped-Tagged-Lambda.py
Using a lambda function, stop all instances that are tagged appropriately.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import logging | |
| #setup simple logging for INFO | |
| logger = logging.getLogger() | |
| logger.setLevel(logging.INFO) | |
| #define the connection | |
| ec2 = boto3.resource('ec2') |
drewmace
/ git.migrate
Last active
October 3, 2018 12:18
— forked from niksumeiko/git.migrate
Moving git repository and all its branches, tags to a new remote repository keeping commits history
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Sometimes you need to move your existing git repository | |
| # to a new remote repository (/new remote origin). | |
| # Here are a simple and quick steps that does exactly this. | |
| # | |
| # Let's assume we call "old repo" the repository you wish | |
| # to move, and "new repo" the one you wish to move to. | |
| # | |
| ### Step 0. List Remotes | |
| git remote -v |
drewmace
/ AprConfiguration.java
Created
March 2, 2017 13:50
— forked from andreldm/AprConfiguration.java
APR on Spring Boot
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import org.apache.catalina.LifecycleListener; | |
| import org.apache.catalina.core.AprLifecycleListener; | |
| import org.springframework.beans.factory.annotation.Value; | |
| import org.springframework.boot.context.embedded.EmbeddedServletContainerFactory; | |
| import org.springframework.boot.context.embedded.tomcat.TomcatEmbeddedServletContainerFactory; | |
| import org.springframework.context.annotation.Bean; | |
| import org.springframework.context.annotation.Configuration; | |
| /** | |
| * NOTE: You also need to install APR on your system, on Arch Linux the package is called `tomcat-native`. |
drewmace
/ gist:ac44a8aa4e92083819413b9abbe51a3f
Created
June 6, 2016 02:05
— forked from fernandoaleman/gist:4551494
How to recursively delete Amazon S3 zero byte files from buckets
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| s3cmd ls --recursive s3://BUCKET_NAME | ruby -rdate -ne 'date, time, size, uri = $_.split; puts uri if size == "0"' | xargs s3cmd del |
drewmace
/ gist:ba97f1d8011364bc532f130297a0c224
Created
June 6, 2016 02:03
— forked from fernandoaleman/gist:5083680
How to update VirtualBox Guest Additions with vagrant
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Start the old vagrant | |
| $ vagrant init centos-6.3 | |
| $ vagrant up | |
| # You should see a message like: | |
| # [default] The guest additions on this VM do not match the install version of | |
| # VirtualBox! This may cause things such as forwarded ports, shared | |
| # folders, and more to not work properly. If any of those things fail on | |
| # this machine, please update the guest additions and repackage the | |
| # box. |
drewmace
/ pedantically_commented_playbook.yml
Last active
April 11, 2016 00:18
— forked from marktheunissen/pedantically_commented_playbook.yml
Insanely complete Ansible playbook, showing off all the options
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| # ^^^ YAML documents must begin with the document separator "---" | |
| # | |
| #### Example docblock, I like to put a descriptive comment at the top of my | |
| #### playbooks. | |
| # | |
| # Overview: Playbook to bootstrap a new host for configuration management. | |
| # Applies to: production | |
| # Description: | |
| # Ensures that a host is configured for management with Ansible. |
NewerOlder