Filipe Ferreira filipeandre
filipeandre
/ envoyconf.yaml
Created
December 18, 2019 14:29
— forked from Misterhex/envoyconf.yaml
envoy proxy protocol upstream example
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| admin: | |
| access_log_path: /tmp/admin_access.log | |
| address: | |
| socket_address: | |
| protocol: TCP | |
| address: 0.0.0.0 | |
| port_value: 9901 | |
| static_resources: | |
| listeners: | |
| - name: tcp_listener |
filipeandre
/ Makefile
Created
December 30, 2019 13:43
— forked from ryu1kn/Makefile
Encrypt/decrypt with AWS KMS using AWS cli
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # How to encrypt/decrypt your text/blob secret with AWS KMS with AWS cli | |
| KEY_ID=alias/my-key | |
| SECRET_BLOB_PATH=fileb://my-secret-blob | |
| SECRET_TEXT="my secret text" | |
| ENCRYPTED_SECRET_AS_BLOB=encrypted_secret_blob | |
| DECRYPTED_SECRET_AS_BLOB=decrypted_secret_blob # Result of decrypt-blob target | |
| encrypt-text: |
filipeandre
/ Rough Draft - AWS Systems Manager & Inspector (Scan for Vulns & Patch)
Created
January 14, 2020 11:41
— forked from ninp0/Rough Draft - AWS Systems Manager & Inspector (Scan for Vulns & Patch)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Systems Manager | |
| aws ssm describe-instance-information --query "InstanceInformationList[*]" | |
| aws ssm get-document --name "AmazonInspector-ManageAWSAgent" --output text > AmazonInspector-ManageAWSAgent.doc | |
| less AmazonInspector-ManageAWSAgent.doc | |
| aws ssm send-command --targets Key=tag:SecurityScan,Values=true --document-name "AmazonInspector-ManageAWSAgent" --query Command.CommandId --output-s3-bucket-name <LoggingBucket> | |
| aws ssm list-command-invocations --details --query "CommandInvocations[*].[InstanceId,DocumentName,Status]" --command-id <CommandId> | |
| # Inspector | |
| aws inspector create-resource-group --resource-group-tags key=SecurityScan,value=true | |
| aws inspector create-assessment-target --assessment-target-name GamesDevTargetGroup --resource-group-arn aws inspector create-assessment-target --assessment-target-name GamesDevTargetGroup --resource-group-arn <ResourceGroupARN> |
filipeandre
/ RFC 3339 regex
Created
February 7, 2020 10:53
— forked from marcelotmelo/RFC 3339 regex
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ^([0-9]+)-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])[Tt]([01][0-9]|2[0-3]):([0-5][0-9]):([0-5][0-9]|60)(\.[0-9]+)?(([Zz])|([\+|\-]([01][0-9]|2[0-3]):[0-5][0-9]))$ |
filipeandre
/ scaling-policy.yml
Created
February 7, 2020 18:10
— forked from nathanpeck/scaling-policy.yml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Enable autoscaling for the service | |
| ScalableTarget: | |
| Type: AWS::ApplicationAutoScaling::ScalableTarget | |
| DependsOn: Service | |
| Properties: | |
| ServiceNamespace: 'ecs' | |
| ScalableDimension: 'ecs:service:DesiredCount' | |
| ResourceId: | |
| Fn::Join: | |
| - '/' |
filipeandre
/ lambda_asg_failover.py
Created
March 13, 2020 02:04
— forked from davidglvn/lambda_asg_failover.py
Failover from spot to on-demand group
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| from os import getenv | |
| from json import loads | |
| # AutoScalingGroups Region | |
| REGION = getenv("REGION", "us-east-1") | |
| # Name of On-Demand failover AutoScalingGroup | |
| ON_DEMAND_ASG = getenv("ON_DEMAND_ASG", None) | |
| # Name of Spot AutoScalingGroup | |
| SPOT_ASG = getenv("SPOT_ASG", None) |
filipeandre
/ mongodb_single_node.json
Created
March 19, 2020 00:32
— forked from visualdensity/mongodb_single_node.json
From: http://docs.mongodb.org/ecosystem/tutorial/automate-deployment-with-cloudformation/
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "AWSTemplateFormatVersion" : "2010-09-09", | |
| "Description" : "Single node MongoDB deployment with a RAID10 storage configuration", | |
| "Parameters" : { | |
| "KeyName" : { | |
| "Description" : "Name of an existing EC2 KeyPair to enable SSH access", | |
| "Type" : "String" | |
| }, |
filipeandre
/ create_and_attach_volume.yaml
Created
March 19, 2020 00:45
— forked from ssummer3/create_and_attach_volume.yaml
AWS: Create and Attach a Volume to an EC2 Instance
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| AWSTemplateFormatVersion: '2010-09-09' | |
| Description: Create a Volume from scratch and attach it to an instance. | |
| Metadata: | |
| AWS::CloudFormation::Interface: |
filipeandre
/ mongodb-s3-backup.sh
Created
March 23, 2020 09:39
— forked from eladnava/mongodb-s3-backup.sh
Automatically backup a MongoDB database to S3 using mongodump, tar, and awscli (Ubuntu 14.04 LTS)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/sh | |
| # Make sure to: | |
| # 1) Name this file `backup.sh` and place it in /home/ubuntu | |
| # 2) Run sudo apt-get install awscli to install the AWSCLI | |
| # 3) Run aws configure (enter s3-authorized IAM user and specify region) | |
| # 4) Fill in DB host + name | |
| # 5) Create S3 bucket for the backups and fill it in below (set a lifecycle rule to expire files older than X days in the bucket) | |
| # 6) Run chmod +x backup.sh | |
| # 7) Test it out via ./backup.sh |
filipeandre
/ rate-limit-2-routes.yaml
Created
June 5, 2020 19:54
— forked from vvucetic/rate-limit-2-routes.yaml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Resources: | |
| RateLimitACL: | |
| Type: AWS::WAFv2::WebACL | |
| Properties: | |
| Name: rate-limit-acl | |
| Scope: REGIONAL | |
| Description: Auto-generated rate-limiting ACL. | |
| DefaultAction: | |
| Allow: {} | |
| VisibilityConfig: |