231 Resources
Golang aws-ssm Libraries
A Prometheus metrics exporter for AWS that fills in gaps CloudWatch doesn't cover
YAAE (Yet Another AWS Exporter) A Prometheus metrics exporter for AWS that fills in gaps CloudWatch doesn't cover About This exporter is meant to expo
Sample CDK projects developed by AWS Professional Services (ProServe)
AWS CDK Examples - ProServe This repository contains a set of CDK example projects which have been developed by AWS Professional Services (ProServe).
Static analysis for CloudFormation templates to identify common misconfigurations
cfsec What is it? cfsec scans your yaml or json CloudFormation configuration files for common security misconfigurations. Installation Home Brew - Mac
Allows you to replace a secret in a file using secrets manager
secrets inserter Allows you to replace a secret in a file using secrets manager. ::SECRET:secret-name:SECRET:: will be replaced with your secret-name
Amazon Web Services (AWS) providerAmazon Web Services (AWS) provider
Amazon Web Services (AWS) provider The Amazon Web Services (AWS) resource provider for Pulumi lets you use AWS resources in your cloud programs. To us
Clean up unused AWS resources
vacuum Vacuum your AWS account of unused resources to save you 💲 💲 !! To run: vacuum all ▒▒▒▒▒▒▒▒▒▒▒▒
Calculate SHA256 checksums of objects on Amazon S3.
s3sha256sum is a small program that calculates SHA256 checksums of objects stored on Amazon S3. Use it to verify the integrity of your objects. If the
AWS credential_process utility to assume AWS IAM Roles with Yubikey Touch and Authenticator App TOPT MFA to provide temporary session credentials; With encrypted caching and support for automatic credential refresh.
AWS credential_process utility to assume AWS IAM Roles with Yubikey Touch and Authenticator App TOPT MFA to provide temporary session credentials; With encrypted caching and support for automatic credential refresh.
🔗 Generate a temporary login URL for the AWS Console
AWS Console 🔗 Generate a temporary login URL for the AWS Console Installation Prebuilt binaries for several architectures can be found attached to an
COVID-19 certificate parser/validator API
=covid-decoder= A simple REST API that parses COVID-19 certificates (provided in textual form) 🚀 Motivation There are plenty of Green Pass (COVID-19
CloudQuery extracts, transforms, and loads your cloud assets into normalized PostgreSQL tables.
The open-source cloud asset inventory backed by SQL. CloudQuery extracts, transforms, and loads your cloud assets into normalized PostgreSQL tables. C
A CLI tool to manage and streamline AWS ECS deployments
Outback CLI 🦘 About The Project Outback is CLI tool written in Go to help streamline the process of deploying containerized applications to AWS Elast
Just Dance Unlimited mock-up server written on Golang and uses a popular Gin framework for Go.
BDCS Just Dance Unlimited mock-up server written on Golang and uses a popular Gin framework for Go. Features Security Authorization works using UbiSer
Apis para la administracion de notifiaciones, utilizando servicios como AWS SNS y AWS SQS
notificacion_api Servicio para envío de notificaciónes por difusión en AWS SNS Especificaciones Técnicas Tecnologías Implementadas y Versiones Golang
tendermint private key provider experiment that wraps cosmovisor and passes the priv key via named pipe.
ssm-cosmovisor You probably don't want to use this and do so at your own risk. This is very experimental and completely untested. It will likely: set
This repository shows how can we use `AWS Lambda` to build serverless applications in golang.
Serverless Api in Go with AWS Lambda Here we are going to use AWS Lambda to build serverless applications in golang. Prerequisites You’ll need an AWS
GO ABI for AWS Secrets-Manager
secrets-manager-cli GO ABI for AWS Secrets-Manager SDK Setup AWS Documentation Download (Source) go get github.com/aws/aws-sdk-go-v2/aws go get github
Simple program that uploads large files to Amazon S3 over slow connections.
shrimp is a small program that can reliably upload large files to Amazon S3. My personal use case is to upload large files to S3 over a slow residenti
AWS Tags Updater - Sync tags with all resources via sheet 🐏🐏
AWS Tags Updater - Sync tags with all resources via sheet 🐏🐏
A telegram bot for aws manage
Aws-Manger-Bot 一个可以管理aws资源的tg bot 部分功能未经过测试,可能无法使用 写的很烂,只有能用的程度 已实现的功能 分用户多密钥管理 EC2创建及管理 Lightsail创建及管理 AGA创建与管理 EC2wl创建与管理 配额相关操作 分密钥代理 使用 从Releases里
Foundational systems for gitops-style AWS development workflows
aws-basics Foundational systems for gitops-style AWS development workflows. Prerequisites GitHub and AWS accounts Terraform Golang Bootstrapping Setup
AWS Profile Switcher in Go
awsd AWS Profile Switcher in Go Easily switch between AWS Profiles Requirements min go 1.17 Install run install.sh source your .bashrc or .zshrc confi
Stream, Mutate and Sign Images with AWS Lambda and ECR
ocistow About How it works Try it yourself Prerequisites CLI (cmd/ocistow) Lambda (cmd/ocistow-lambda) Deploy Invoke Verify signatures with =cosign= I
A Pulumi multi language component to create an IAM role for an EKS cluster
xyz Pulumi Component Provider (Go) This repo is a boilerplate showing how to create a Pulumi component provider written in Go. You can search-replace
aws credential solution by Golang
goCred Aws credential solution by Golang (Works on Linux, Arm, and Windows) v0.3 Detection of unauthorized access Locks access in case of repeated una
Kubernetes Cluster API Provider AWS
Kubernetes Cluster API Provider AWS Kubernetes-native declarative infrastructure for AWS. What is the Cluster API Provider AWS The Cluster API brings
A Terraform module that creates AWS alerts billing for your resources.
terraform-aws-billing-alarms terraform-aws-billing-alarms for project Replace name project to New Project agr 'terraform-aws-billing-alarms' 'new-pr
Integrate AWS EKS Anywhere cluster with AWS Services
This article provides step-by-step instruction on integrating AWS EKS Anywhere with AWS Services so the applications running on customer data center can securely connect with these services.
Automatic AWS Security Group ingress through DDNS
Auto DDNS Security Lambda Update AWS Security Group rules to an IP resolved from a DNS hostname. Useful to dynamically allow ingress from a DDNS hostn
Handle any SQS use case, monitor any queue. Reusable for any project! Invoke in a goroutine to process SQS messages.
GOSQS This package is intended to be a Go SQS listener that can be imported and invoked as a goroutine handled by the life cycle of your service. It's
Freaking simple AWS Reserved Instance and Usage coverage report
richeck This tool allows you to simply see the EC2 and ElastiCache nodes you have reserved on amazon. Motivation: How many instances are currently res
Http apis with AWS CDK for Go
Http apis with AWS CDK for Go Blog: https://harshq.medium.com/building-apps-with-aws-sdk-for-golang-api-gateway-and-lambda-b254858b1d71 Useful command
K8s controller implementing Multi-Cluster Services API based on AWS Cloud Map.
AWS Cloud Map MCS Controller for K8s Introduction AWS Cloud Map multi-cluster service discovery for Kubernetes (K8s) is a controller that implements e
Pulumi - Modern Infrastructure as Code. Any cloud, any language 🚀
Pulumi's Infrastructure as Code SDK is the easiest way to create and deploy cloud software that use containers, serverless functions, hosted services,
The open source public cloud platform. An AWS alternative for the next generation of developers.
M3O M3O is an open source public cloud platform. We are building an AWS alternative for the next generation of developers. Overview AWS was a first ge
Pulumi : Deploy in AWS LocalStack
Pulumi - Deploy in AWS LocalStack How to deploy using pulumi in an AWS environment running on your machine with localstack? Dependencies Docker AWS CL
CLI tool to update ~/.aws/config with all accounts and permission sets defined in AWS SSO
aws-sso-profiles Generate or update ~/.aws/config with a profile for each SSO account you have access to, by using an existing AWS SSO session. Bootst
Automatically roll your AWS IAM access key (aws_access_key_id) and secret key (aws_secret_access_key).
roll-it Keep your AWS Credentials fresh 🍊 on Windows, Mac, Linux (arm or x86)! What it Does Programmatically rotate your AWS IAM access keys and secr
Fetches the output for an AWS SSM command for every target
AWSCommander Fetches the output for an AWS SSM command for every target. Optionally outputs as HTML. Examples Get command from Tokio Japan as text AWS
A compute service that lets you run code without provisioning or managing servers
AWS Lambda for Go Lambda is a compute service that lets you run code without provisioning or managing servers. Lambda runs your code on a high-availab
A plugin for running Open Policy Agent (OPA) in AWS Lambda as a Lambda Extension.
opa-lambda-extension-plugin A custom plugin for running Open Policy Agent (OPA) in AWS Lambda as a Lambda Extension. To learn more about how Lambda Ex
Scaffold to help building Terraform Providers using AWS IAM authentication.
Terraform Provider Scaffolding This repository is a template for a Terraform provider. It is intended as a starting point for creating Terraform provi
A netcat/kafkacat like utility for AWS SQS.
sqscat sqscat is "netcat for SQS". You can use sqscat to receive from and send messages to SQS queue. sqscat uses newline as the delimiter between mes
A "passwordless" login experience for your AWS RDS
RDS Auth Proxy A two-layer proxy for connecting into RDS postgres databases based on IAM authentication. This tool allows you to keep your databases f
Drop-in replacement for Go net/http when running in AWS Lambda & API Gateway
Package gateway provides a drop-in replacement for net/http's ListenAndServe for use in AWS Lambda & API Gateway, simply swap it out for gateway.Liste
Assumes roles in AWS that have useful role session tags
ghaoidc Assumes roles in AWS that have useful role session tags GitHub Actions has (almost) launched OpenID Connect federation. This means you can ass
starenv allows populating environmental variables from variety of sources, such as AWS Parameter Store, GPG encrypted files and more, with extreme ease.
starenv (*env) allows populating environmental variables from variety of sources, such as AWS Parameter Store, GPG encrypted files and more, with extr
Run Amazon EKS on your own infrastructure 🚀
Amazon EKS Anywhere Conformance test status: Amazon EKS Anywhere is a new deployment option for Amazon EKS that enables you to easily create and opera
A serverless sync server for Santa, built on AWS
Rudolph Rudolph is the control server counterpart of Santa, and is used to rapidly deploy configurations to Santa agents. Rudolph is built in Amazon W
A go library for testing Amazon DynamoDB.
minidyn Amazon DynamoDB testing library written in Go. Goals Make local testing for DynamoDB as accurate as possible. Run DynamoDB tests in a CI witho
storage interface for local disk or AWS S3 (or Minio) platform
storage interface for local disk or AWS S3 (or Minio) platform
Delete CloudFormation stacks respecting stack dependencies
CFN Teardown Cleanup CloudFormation stacks respecting the order of dependencies. Features Stack name pattern matching for deletion. Finds out dependen
Lookup or replace AWS account IDs with their names and vice versa
awsacc A trusty helper for working with AWS account IDs. Working with AWS account IDs often involves more manual effort than necessary. Often account
PoC for running AWS services(kinesis, dynamodb, lambdas) locally with Localstack
hotdog-localstack-PoC PoC for running AWS services(kinesis, dynamodb, lambdas) locally with Localstack alias awslocal="aws --endpoint-url=http://local
FSS3 is an S3 filesystem abstraction layer for Golang
FSS3 is an S3 filesystem abstraction layer for Golang
Infrastructure testing helper for AWS Resources that uses AWS SSM to remotely execute commands on EC2 machines.
Infrastructure testing helper for AWS Resources that uses AWS SSM to remotely execute commands on EC2 machines, to enable infrastructure engineering teams to write tests that validate behaviour.
Internet connectivity for your VPC-attached Lambda functions without a NAT Gateway
lambdaeip Internet connectivity for your VPC-attached Lambda functions without a NAT Gateway Background I occasionally have serverless applications th
AWS Cloudtrail event alerting lambda function. Send alerts to Slack, Email, or SNS.
Cloudtrail-Tattletail is a Lambda based Cloudtrail alerting tool. It allows you to write simple rules for interesting Cloudtrail events and forward those events to a number of different systems.
Useful AWS access key attribution tool
whodunnit Working towards this: https://twitter.com/__steele/status/1410437278489477120. Dumping code now to validate if it's useful or not before inv
Terraform provider to help with various AWS automation tasks (mostly all that stuff we cannot accomplish with the official AWS terraform provider)
terraform-provider-awsutils Terraform provider for performing various tasks that cannot be performed with the official AWS Terraform Provider from Has
go-awssh is a developer tool to make your SSH to AWS EC2 instances easy.
Describing Instances/VPCs data, select one or multiple instances, and make connection(s) to selected instances. Caching the response of API calls for 1day using Tmpfs.
Awesome-go list with stars. Automatically updated
About This repository is a clone of Awesome Go but with stars. All repositories are still sorted alphabetically. Why? Some of the viewers might be aga
sops is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP
sops is an editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault, age, and PGP. (demo)
Use AWS SQS as a clipboard to copy and paste across different systems and platforms
sqs_clipboard Use AWS SQS as a clipboard to copy and paste across different systems and platforms. Clipboard contents are encrypted in transit and at
lambda-go-api-proxy makes it easy to port APIs written with Go frameworks such as Gin to AWS Lambda and Amazon API Gateway.
aws-lambda-go-api-proxy makes it easy to run Golang APIs written with frameworks such as Gin with AWS Lambda and Amazon API Gateway.
efsu is for accessing AWS EFS from your machine without a VPN
efsu: VPN-less access to AWS EFS efsu is for accessing AWS EFS from your machine without a VPN. It achieves this by deploying a Lambda function and sh
This plugin helps you to use the AWS Command Line Interface (AWS CLI) to start and end sessions to your managed instances
Session Manager Plugin This plugin helps you to use the AWS Command Line Interface (AWS CLI) to start and end sessions to your managed instances. Sess
Cloud governance reports from native services in a clear and readable digest
cloudig, or Cloudigest, is a simple CLI tool for creating reports from various cloud sources with user-provided comments. It is written in Go and curr
This example shows how to serve private contents on AWS S3 through CloudFront signed URL.
AWS CloudFront with Signed URL This is the repository of my blog post. This example shows how to serve private contents on AWS S3 through CloudFront s
Simplify Kubernetes Secrets Management with Dockhand Secrets Operator
dockhand-secrets-operator Secrets management with GitOps can be challenging in Kubernetes environments. Often engineers resort to manual secret creati
Fake AWS S3 server for local development
FakeS3 server for local development Download latest binaries here Creating new release go get github.com/johannesboyne/gofakes3/cmd/gofakes3@new-sha-o
Small Lambda function which performs a Aws:Sts:AssumeRole based on the presented JWT-Token
About This implements a AWS Lambda handler which takes a JWT-Token, validates it and then performs a Aws:Sts:AssumeRole based on preconfigured rules.
Identity & Access Management simplified and secure.
IAM Zero Identity & Access Management simplified and secure. 🚀 Get Started | 📖 Support What is IAM Zero? IAM Zero detects identity and access manage
AWS Data Transfer Cost Explorer
The AWS Data Transfer Cost Explorer The AWS Data Transfer Cost Explorer tool analyzes the billed Data Transfer items in your AWS account and presents
A k8s vault webhook is a Kubernetes webhook that can inject secrets into Kubernetes resources by connecting to multiple secret managers
k8s-vault-webhook is a Kubernetes admission webhook which listen for the events related to Kubernetes resources for injecting secret directly from sec
provide api for cloud service like aliyun, aws, google cloud, tencent cloud, huawei cloud and so on
cloud-fitter 云适配 Communicate with public and private clouds conveniently by a set of apis. 用一套接口,便捷地访问各类公有云和私有云 对接计划 内部筹备中,后续开放,有需求欢迎联系。 开发者社区 开发者社区文档
Teller - the open-source universal secret manager for developers
A secrets management tool for developers built in Go - never leave your command line for secrets.
A fully-featured AWS Athena database driver (+ athenareader https://github.com/uber/athenadriver/tree/master/athenareader)
📦 athenadriver - A fully-featured AWS Athena database driver for Go 🐚 athenareader - A moneywise command line utililty to query athena in command li
Automatically resize your ebs
ebs-autoresize Automatically resize your ebs. Table of Contents ebs-autoresize Table of Contents Installing Getting Started Resize Best practices Cont
Highly configurable prompt builder for Bash, ZSH and PowerShell written in Go.
Go Bullet Train (GBT) Highly configurable prompt builder for Bash, ZSH and PowerShell written in Go. It's inspired by the Oh My ZSH Bullet Train theme
The AWS Enumerator was created for service enumeration and info dumping for investigations of penetration testers during Black-Box testing. The tool is intended to speed up the process of Cloud review in case the security researcher compromised AWS Account Credentials.
AWS Service Enumeration Disclaimer The tool is in beta stage (testing in progress), no destructive API Calls used ( read only actions ). I hope, there
CLI for exploring AWS EC2 Spot inventory. Inspect AWS Spot instance types, saving, price, and interruption frequency.
spotinfo The spotinfo is a command-line tool that helps you determine AWS Spot instance types with the least chance of interruption and provides the s
🌍 📋 A web dashboard to inspect Terraform States
🌍 📋 A web dashboard to inspect Terraform States
🔒🌍 Security scanner for your Terraform code
🔒🌍tfsec uses static analysis of your terraform templates to spot potential security issues.
Provides an interactive prompt to connect to ECS Containers using the ECS ExecuteCommand API.
ecsgo Heavily inspired by incredibly useful gossm, this tool makes use of the new ECS ExecuteCommand API to connect to running ECS tasks. It provides
Machinery is an asynchronous task queue/job queue based on distributed message passing.
Machinery Machinery is an asynchronous task queue/job queue based on distributed message passing. V2 Experiment First Steps Configuration Lock Broker
Database migrations. CLI and Golang library.
migrate Database migrations written in Go. Use as CLI or import as library. Migrate reads migrations from sources and applies them in correct order to
Serverless SOAR (Security Orchestration, Automation and Response) framework for automatic inspection and evaluation of security alert
DeepAlert DeepAlert is a serverless framework for automatic response of security alert. Overview DeepAlert receives a security alert that is event of
Git-like capabilities for your object storage
What is lakeFS lakeFS is an open source layer that delivers resilience and manageability to object-storage based data lakes. With lakeFS you can build
:incoming_envelope: Simple email interface across multiple service providers (ses, postmark, mandrill, smtp)
go-mail Lightweight email package with multi-provider support (ses, mandrill, postmark) Table of Contents Installation Documentation Examples & Tests
The fastest HTTP/2 Go Web Framework. AWS Lambda, gRPC, MVC, Unique Router, Websockets, Sessions, Test suite, Dependency Injection and more. A true successor of expressjs and laravel | 谢谢 https://github.com/kataras/iris/issues/1329 |
News This is the under-development branch. Stay tuned for the upcoming release v12.2.0. Looking for a stable release? Head over to the v12.1.8 branch
Query AWS Athena and download the result as CSV.
Overview This tool can download an Athena SQL query results in CSV format. Installation Using Homebrew: $ brew tap flowerinthenight/tap $ brew install
Progressive delivery Kubernetes operator (Canary, A/B Testing and Blue/Green deployments)
flagger Flagger is a progressive delivery tool that automates the release process for applications running on Kubernetes. It reduces the risk of intro
rpCheckup is an AWS resource policy security checkup tool that identifies public, external account access, intra-org account access, and private resources.
rpCheckup - Catch AWS resource policy backdoors like Endgame rpCheckup is an AWS resource policy security checkup tool that identifies public, externa
Database migrations. CLI and Golang library.
Database migrations written in Go. Use as CLI or import as library.
Assume AWS IAM roles from GitHub Actions workflows with no stored secrets
AWS IAM roles for GitHub Actions workflows Background and rationale GitHub Actions are a pretty nice solution for CI/CD. Where they fall short is inte
Terratest is a Go library that makes it easier to write automated tests for your infrastructure code.
Terratest is a Go library that makes it easier to write automated tests for your infrastructure code. It provides a variety of helper functions and patterns for common infrastructure testing tasks,