recentpopularlog in

whip_lash : aws   44

AWS Elastic Beanstalk – Deploy Web Applications
You can simply upload your code and Elastic Beanstalk automatically handles the deployment, from capacity provisioning, load balancing, auto-scaling to application health monitoring. At the same time, you retain full control over the AWS resources powering your application and can access the underlying resources at any time.

There is no additional charge for Elastic Beanstalk - you pay only for the AWS resources needed to store and run your applications.
aws  cloud  infrastructure  beanstalk 
9 days ago by whip_lash
AWS Fargate - Run containers without having to manage servers or clusters
AWS Fargate seamlessly integrates with Amazon ECS. You just define your application as you do for Amazon ECS. You package your application into task definitions, specify the CPU and memory needed, define the networking and IAM policies that each container needs, and upload everything to Amazon ECS. After everything is setup, AWS Fargate launches and manages your containers for you.
aws  cloud  containers  docker 
9 days ago by whip_lash
TryHackMe | awspentesting
This room will look at how to carry out penetration testing in the AWS Cloud Environment.
aws  pentest  cloud  security 
11 days ago by whip_lash
GitHub - Netflix/bless: Repository for BLESS, an SSH Certificate Authority that runs as a AWS Lambda function
BLESS is an SSH Certificate Authority that runs as an AWS Lambda function and is used to sign SSH public keys.

SSH Certificates are an excellent way to authorize users to access a particular SSH host, as they can be restricted for a single use case, and can be short lived. Instead of managing the authorized_keys of a host, or controlling who has access to SSH Private Keys, hosts just need to be configured to trust an SSH CA.
aws  lambda  ssh  netflix  authentication 
20 days ago by whip_lash
New – AWS Systems Manager Session Manager for Shell Access to EC2 Instances | AWS News Blog
Today we are adding a new option for shell-level access. The new Session Manager makes the AWS Systems Manager even more powerful. You can now use a new browser-based interactive shell and a command-line interface (CLI) to manage your Windows and Linux instances.
aws  cloud  shell 
4 weeks ago by whip_lash
AWS Risk Model
An expert forecasting session recorded the judgements of these experts for each AWS configuration. These are then tranformed into a statistical model representing their beliefs as an entire panel.
aws  risk  InfoSec  cloud 
5 weeks ago by whip_lash
A deep dive into the AWS network – Txens
If the way about how to implement your network within AWS is well documented, the AWS network itself is not documented at all and we have to merge several sources of information to get a good overview of its design. That’s what this blog post is about.
aws  cloud  networking 
january 2019 by whip_lash
AWS Documentation
Find user guides, developer guides, API references, tutorials, and more.
aws  documentation 
december 2018 by whip_lash
flAWS2.cloud
flAWS 2 has two paths this time: Attacker and Defender! In the Attacker path, you'll exploit your way through misconfigurations in serverless (Lambda) and containers (ECS Fargate). In the Defender path, that target is now viewed as the victim and you'll work as an incident responder for that same app, understanding how an attack happened. You'll get access to logs of a previous successful attack. As a Defender you'll learn the power of jq in analyzing logs, and instructions on how to set up Athena in your own environment.
aws  security  pentest  pentesting  ctf  tutorial 
december 2018 by whip_lash
SANS Institute: Reading Room - Cloud Computing
Companies using AWS (Amazon Web Services) will find that traditional means of full packet capture using span ports is not possible. As defined in the AWS Service Level Agreement, Amazon runs certain aspects of the cloud platform and does not give customers access to physical networking hardware. Although access to physical network equipment is limited, packet capture is still possible on AWS but needs to be architected in a different way.
aws  networking  security 
november 2018 by whip_lash
AWS Lambda + Serverless Framework + Python — A Step By Step Tutorial — Part 1 “Hello World”
I am creating a series of blog posts to help you develop, deploy and run (mostly) Python applications on AWS Lambda using Serverless Framwork.
aws  python  lambda  serverless 
september 2018 by whip_lash
UsefulScripts/UpdateCloudIPs.py at master · chrismaddalena/UsefulScripts · GitHub
This script performs the necessary actions for collecting the latest IP addresses used by Amazon
Web Services, Google Compute, and Microsoft Azure. At the end, all IP addresses are output to
a CloudIPs.txt file. Each range is printed on a new line following a header naming the provider.
As discussed at https://posts.specterops.io/head-in-the-clouds-bd038bb69e48?gi=c33a4e051d6b
aws  azure  github  cloud 
september 2018 by whip_lash
A practical look at basic AWS Networking with Terraform | OpsTips
A conventional AWS Networking Tutorial out there using Terraform doesn't go around the concepts of AWS Networking. Check out how to provision an AWS VPC with multiple subnets and configure security groups using Terraform.
aws  networking  terraform 
july 2018 by whip_lash
Netflix/security_monkey: Security Monkey
Security Monkey monitors your AWS and GCP accounts for policy changes and alerts on insecure configurations. Support is available for OpenStack public and private clouds. Security Monkey can also watch and monitor your GitHub organizations, teams, and repositories.
aws  devops  github  monitoring  security 
july 2018 by whip_lash
Cyberduck | Libre server and cloud storage browser for Mac and Windows with support for FTP, SFTP, WebDAV, Amazon S3, OpenStack Swift, Backblaze B2, Microsoft Azure & OneDrive, Google Drive and Dropbox
Cyberduck is a libre server and cloud storage browser for Mac and Windows with support for FTP, SFTP, WebDAV, Amazon S3, OpenStack Swift, Backblaze B2, Microsoft Azure & OneDrive, Google Drive and Dropbox.
aws  cloud  storage  s3  tool 
july 2018 by whip_lash
Hosting a Static Website on Amazon S3 - Amazon Simple Storage Service
You can host a static website on Amazon Simple Storage Service (Amazon S3). On a static website, individual webpages include static content. They might also contain client-side scripts. By contrast, a dynamic website relies on server-side processing, including server-side scripts such as PHP, JSP, or ASP.NET. Amazon S3 does not support server-side scripting. Amazon Web Services (AWS) also has resources for hosting dynamic websites. To learn more about website hosting on AWS, go to Websites and Website Hosting.
amazon  aws  s3  hosting 
july 2018 by whip_lash
An Introduction to Terraform – Gruntwork
Learn the basics of Terraform in this step-by-step tutorial of how to deploy a cluster of web servers and a load balancer on AWS
automation  aws  terraform  tutorial 
july 2018 by whip_lash
open-guides/og-aws: 📙 Amazon Web Services — a practical guide
This guide is by and for engineers who use AWS. It aims to be a useful, living reference that consolidates links, tips, gotchas, and best practices. It arose from discussion and editing over beers by several engineers who have used AWS extensively.
amazon  aws  cloud  github  guide 
july 2018 by whip_lash
Hiding Secrets in Terraform
Unfortunately, in order to set up most of these services you need usernames and passwords to be set - and since you can potentially change these passwords via Terraform then it stands to reason that Terraform is going to need be able to compare your old credentials with possible new ones.

To facilitate this it stores all settings, including usernames, passwords, port numbers and literally everything else in these tfstate files, in plain text.

This wasn’t something I’d have expected as the default behaviour. The documentation does suggest that you use a thing called Remote State (more on that later)
terraform  cloud  aws  passwords 
july 2018 by whip_lash
How we built Hamiltix.net for less than $1 a month on AWS | Bad Sector Labs Blog
Normally, the first step for this kind of project is to start up a linux server, but serverless computing is on the rise. We've never dealt with Lambda or any other "serverless" technology before so lets give it a shot.
architecture  aws  software  web 
march 2018 by whip_lash
Tutorial: Implementing a DDoS-resistant Website Using AWS Services - AWS WAF and AWS Shield Advanced
This tutorial shows you how to use several AWS services together to build a resilient, highly secure website.
aws  webapp  webdesign  webdev  website 
november 2017 by whip_lash

Copy this bookmark:





to read