Posts in AWS
Send payload to AWS Lambda from Cloudwatch scheduled event
How to send payload to AWS Lambda from Cloudwatch scheduled event.
Trust on Cloud AWS S3 Threat Model
Trust on Cloud have open sourced their AWS S3 threat model, this release is a great tool to make sense of the “shared responsibility model” and what “responsibility” means for AWS customers.
Monitoring VPN / Direct Connect Connectivity
In an on premise network it is typical to do some type of topology discovery via the MIB-II SNMP tables of all your network gear and then use ICMP to ping each of the discovered routers or switches respective management interfaces to validate connectivity and contribute to intelligence when parts of the network go dark and speed up root cause analysis.
Running Amazon Linux 2 on prem on VMware
There is no default ec2-user or root password set for the Amazon Linux 2 ova. You must use cloud-init via it’s nocloud datasource
AWS Sagegemaker Jupyter Notebook
I wanted to upgrade the version of pandas that comes with AWS Sagemaker Notebook to > 1.1 because this simplify handling of group by with null or NaN values.
OSS logstash with AWS Opendistro for Elasticsearch
To get logstash talking to the Open Distro Elasticsearch the first thing that should be understood is that open distro only works with the OSS (Apache 2.0 Licensed) edition of the Elastic tools and not the Elastic licensed edition (Xpack).
Logstash ingestion of AWS billing customer usage reports
To get the CUR reports into elastic search:
CloudTrail and VPC Endpoints Logging
Today I learnt that AWS CloudTrail does not log requests that are denied by VPC endpoint policy. The reason for this is that it would allow an attacker to exfiltrate data via CloudTrail and the VPC endpoint outside of the VPC! (For example by sending lots of requests with data you want to extract in the request fields)
Cloudformation: Provided Load Balancers may not be valid. Please ensure they exist and try again
Spent too much time troubleshooting the following error but I happy to find the solution for this error: