Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/jgamblin/awsscripts

Various AWS Automation Scripts
https://github.com/jgamblin/awsscripts

aws aws-cli

Last synced: 2 days ago
JSON representation

Various AWS Automation Scripts

Host: GitHub
URL: https://github.com/jgamblin/awsscripts
Owner: jgamblin
License: mit
Created: 2017-11-06T13:20:55.000Z (about 7 years ago)
Default Branch: master
Last Pushed: 2018-02-28T15:40:58.000Z (over 6 years ago)
Last Synced: 2024-08-04T08:06:41.915Z (3 months ago)
Topics: aws, aws-cli
Language: Shell
Homepage:
Size: 15.6 KB
Stars: 141
Watchers: 10
Forks: 76
Open Issues: 0
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # AWS Scripts

Various AWS Automation Scripts

A collection of shell scripts for automating various security tasks with Amazon Web Services.


You will need the [AWS-CLI](https://aws.amazon.com/cli/) installed and configured to make this work correctly.

## Scripts

**_WAF/WAF.SH_**: Creates a WAF using cloud formation and a rules template.


**_ACM/acmdigicert.sh_**: Creates Digicert TLS certificates using their API and uploads them to ACM.


**_Cloudfront/quickaudit.sh_**: Quickly audits CloudFront for WAF, Logging, TLS and HTTP Only usage.


**_EC2/noingress.sh_**: Lists all in-use security groups that allow 0.0.0.0/0 for your inspection.

**_EC2/notused.sh_**: Lists all unused security groups that can likely be removed.

**_EC2/instances.sh_**: Lists all EC2 Instances in all AvailabilityZones.

**_EC2/SecurityGroups/addssh.sh_**: Adds rule to allow SSH access from your current public IP address.

**_EC2/SecurityGroups/removessh.sh_**: Removes rules allowing SSH access from your current public IP address.

**_GuardDuty/enale.sh_**: Enables GuardDuty in all available regions.

**_GuardDuty/findings.sh_**: Exports all GuardDuty findings to .json files.

**_S3/policies.sh_**: Lists all ACLs for S3 buckets in your account.

**_IAM/EC2USEastOnly.json_**: IAM policy that only allows EC2 instances in US-East-1.

**_IAM/userreport.sh_**: Downloads the credential [report](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_getting-report.html) for for all configured profiles in ~/.aws/credentials.

## Important Notice

_I likely dont know what I am doing and this could be done faster, better and simpler some other way. These scripts could also break your cloud and make you cry._