aws-well-architected-labs
bless
aws-well-architected-labs | bless | |
---|---|---|
4 | 6 | |
1,948 | 2,729 | |
0.7% | 0.2% | |
7.1 | 0.0 | |
19 days ago | 9 months ago | |
Python | Python | |
Apache License 2.0 | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
aws-well-architected-labs
-
AWS costs every programmer should know (2019)
AZs are connected via normal user visible networks, you can just break those. They even provide examples, https://github.com/awslabs/aws-well-architected-labs/tree/ma...
Those are basic (don't cover flapping or glacial-speed slowdown degradation modes etc) but a starting point at least.
-
Recommend Open Source Terraform Code deploying Azure / AWS / GCP - For me to read and learn
read up on aws well architected framework and you'll find github/gitlab code for terraform to follow this structure https://rst.software/blog/2020/08/the-5-pillars-of-the-aws-well-architected-framework-i-operational-excellence/ https://github.com/awslabs/aws-well-architected-labs
- awslabs/aws-well-architected-labs: Hands on labs and code to help you learn, measure, and build using architectural best practices.
-
Best practice and cost optimization
AWS Well architected labs: https://github.com/awslabs/aws-well-architected-labs
bless
-
What are SSH Certificate Authority solutions?
In the quick search I learned about ssh cert authority which looks very manual and also like a dead project smallstep's step-ca who put together very nice article about how to begin certificate authority process Netflix' BLESS is AWS only Cashier which also looks quite ok
-
What is the best way to manage SSH identities and access on scale?
NETFLIX BLESS - Bastion's Lambda Ephemeral SSH Service
- Has anyone here heard of the term “infrastructure access platform” or StrongDm or Teleport?
- Cryptojacking Attacks Continue To Target SSH Servers
- How often should I rotate my SSH keys?
-
Why SSH certificates are awesome
3. BLESS - By Netflix
What are some alternatives?
pacu - The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
certificates - 🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
ScoutSuite - Multi-Cloud Security Auditing Tool
the-bastion - Authentication, authorization, traceability and auditability for SSH accesses.
prowler - Prowler is an Open Source Security tool for AWS, Azure, GCP and Kubernetes to do security assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more
cashier - A self-service CA for OpenSSH
chaostoolkit - Chaos Engineering Toolkit & Orchestration for Developers
openssh-sk-winhello - A helper for OpenSSH to interact with FIDO2 and U2F security keys through native Windows Hello API
siem-on-amazon-opensearch-service - A solution for collecting, correlating and visualizing multiple types of logs to help investigate security incidents.
keymaster - Short term certificate based identity system (ssh/x509 ca + openidc)
handbook.vantage.sh - The Cloud Cost Handbook is a free, open-source, community-supported set of guides meant to help explain often-times complex pricing of public cloud infrastructure and service providers in plain english.
streamalert - StreamAlert is a serverless, realtime data analysis framework which empowers you to ingest, analyze, and alert on data from any environment, using datasources and alerting logic you define.