Filipe Ferreira filipeandre
filipeandre
/ lambda_asg_failover.py
Created
March 13, 2020 02:04
— forked from davidglvn/lambda_asg_failover.py
Failover from spot to on-demand group
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| from os import getenv | |
| from json import loads | |
| # AutoScalingGroups Region | |
| REGION = getenv("REGION", "us-east-1") | |
| # Name of On-Demand failover AutoScalingGroup | |
| ON_DEMAND_ASG = getenv("ON_DEMAND_ASG", None) | |
| # Name of Spot AutoScalingGroup | |
| SPOT_ASG = getenv("SPOT_ASG", None) |
filipeandre
/ scaling-policy.yml
Created
February 7, 2020 18:10
— forked from nathanpeck/scaling-policy.yml
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Enable autoscaling for the service | |
| ScalableTarget: | |
| Type: AWS::ApplicationAutoScaling::ScalableTarget | |
| DependsOn: Service | |
| Properties: | |
| ServiceNamespace: 'ecs' | |
| ScalableDimension: 'ecs:service:DesiredCount' | |
| ResourceId: | |
| Fn::Join: | |
| - '/' |
filipeandre
/ RFC 3339 regex
Created
February 7, 2020 10:53
— forked from marcelotmelo/RFC 3339 regex
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ^([0-9]+)-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])[Tt]([01][0-9]|2[0-3]):([0-5][0-9]):([0-5][0-9]|60)(\.[0-9]+)?(([Zz])|([\+|\-]([01][0-9]|2[0-3]):[0-5][0-9]))$ |
filipeandre
/ Rough Draft - AWS Systems Manager & Inspector (Scan for Vulns & Patch)
Created
January 14, 2020 11:41
— forked from ninp0/Rough Draft - AWS Systems Manager & Inspector (Scan for Vulns & Patch)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Systems Manager | |
| aws ssm describe-instance-information --query "InstanceInformationList[*]" | |
| aws ssm get-document --name "AmazonInspector-ManageAWSAgent" --output text > AmazonInspector-ManageAWSAgent.doc | |
| less AmazonInspector-ManageAWSAgent.doc | |
| aws ssm send-command --targets Key=tag:SecurityScan,Values=true --document-name "AmazonInspector-ManageAWSAgent" --query Command.CommandId --output-s3-bucket-name <LoggingBucket> | |
| aws ssm list-command-invocations --details --query "CommandInvocations[*].[InstanceId,DocumentName,Status]" --command-id <CommandId> | |
| # Inspector | |
| aws inspector create-resource-group --resource-group-tags key=SecurityScan,value=true | |
| aws inspector create-assessment-target --assessment-target-name GamesDevTargetGroup --resource-group-arn aws inspector create-assessment-target --assessment-target-name GamesDevTargetGroup --resource-group-arn <ResourceGroupARN> |
filipeandre
/ Makefile
Created
December 30, 2019 13:43
— forked from ryu1kn/Makefile
Encrypt/decrypt with AWS KMS using AWS cli
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # How to encrypt/decrypt your text/blob secret with AWS KMS with AWS cli | |
| KEY_ID=alias/my-key | |
| SECRET_BLOB_PATH=fileb://my-secret-blob | |
| SECRET_TEXT="my secret text" | |
| ENCRYPTED_SECRET_AS_BLOB=encrypted_secret_blob | |
| DECRYPTED_SECRET_AS_BLOB=decrypted_secret_blob # Result of decrypt-blob target | |
| encrypt-text: |
filipeandre
/ envoyconf.yaml
Created
December 18, 2019 14:29
— forked from Misterhex/envoyconf.yaml
envoy proxy protocol upstream example
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| admin: | |
| access_log_path: /tmp/admin_access.log | |
| address: | |
| socket_address: | |
| protocol: TCP | |
| address: 0.0.0.0 | |
| port_value: 9901 | |
| static_resources: | |
| listeners: | |
| - name: tcp_listener |
filipeandre
/ envoy-external-lb-dynamic.yaml
Created
December 18, 2019 14:17
— forked from vbanthia-zz/envoy-external-lb-dynamic.yaml
Simple static envoy config for external kubernetes load balancer
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| static_resources: | |
| listeners: | |
| - address: | |
| socket_address: | |
| address: 0.0.0.0 | |
| port_value: 80 | |
| filter_chains: | |
| - filters: | |
| - name: envoy.tcp_proxy | |
| config: |
filipeandre
/ lambda-aws-ssm-run-command-on-ec2-instance.py
Created
December 7, 2019 18:48
— forked from lrakai/lambda-aws-ssm-run-command-on-ec2-instance.py
Run commands on EC2 instances using Lambda and Systems Manager (SendCommand)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import botocore | |
| import time | |
| def handler(event=None, context=None): | |
| client = boto3.client('ssm') | |
| instance_id = 'i-07362a00952fca213' # hard-code for example | |
| response = client.send_command( |
filipeandre
/ aws_clean_security_groups.py
Created
December 6, 2019 23:13
— forked from chowyi/aws_clean_security_groups.py
python script to clean AWS useless security groups.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # coding:utf-8 | |
| import boto3 | |
| import logging | |
| logging.basicConfig( | |
| format='%(levelname)s %(asctime)s\n%(message)s', | |
| datefmt='%Y-%m-%d %H:%M:%S', | |
| filename='./clean_security_groups.log', | |
| level=logging.INFO, | |
| filemode='a' |
filipeandre
/ RemoveDefaultVPC.py
Created
December 6, 2019 23:13
— forked from restump/RemoveDefaultVPC.py
Remove default VPC
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python | |
| import boto3, argparse, sys, time | |
| parser = argparse.ArgumentParser(description="Remove default VPC in specified account and region") | |
| parser.add_argument('--account', | |
| type=str ) | |
| parser.add_argument('--region', | |
| type=str ) | |
| parser.add_argument('--role', |