Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Do(n’t) try this at work - Technically, you _ca...

Sponsored · Your Podcast. Everywhere. Effortlessly. Share. Educate. Inspire. Entertain. You do you. We'll handle the rest.
Avatar for Ben Bridts Ben Bridts
May 27, 2021
0
210

Do(n’t) try this at work - Technically, you _can_ do this

Avatar for Ben Bridts

Ben Bridts

May 27, 2021
Tweet

More Decks by Ben Bridts

See All by Ben Bridts
Using IAM Roles Anywhere for free
Avatar for Ben Bridts benbridts
1
30
The Hidden Costs of Managed Open Source
Avatar for Ben Bridts benbridts
0
43
re:Invent re:Cap 2023: Evolving your architecture
Avatar for Ben Bridts benbridts
0
72
A closer look at new ways to manage access - EKS Pod Identiy and S3 Access Grant
Avatar for Ben Bridts benbridts
0
26
From ‘huh?’ to privilege escalation
Avatar for Ben Bridts benbridts
0
41
re:Invent re:Cap - Removing Heavy Lifting
Avatar for Ben Bridts benbridts
0
120
Policy as Code: Putting best practices in your repository
Avatar for Ben Bridts benbridts
0
200
(Don't) try this at work - Lightning Talk
Avatar for Ben Bridts benbridts
0
150
AWS Systems Manager
Avatar for Ben Bridts benbridts
1
170

Featured

See All Featured
30 Presentation Tips
Avatar for Ian Lurie portentint
PRO
1
260
Designing Powerful Visuals for Engaging Learning
Avatar for Mike Taylor tmiket
0
300
How to Get Subject Matter Experts Bought In and Actively Contributing to SEO & PR Initiatives.
Avatar for Liv Day livdayseo
0
91
Redefining SEO in the New Era of Traffic Generation
Avatar for Szymon Słowik szymonslowik
1
260
Measuring Dark Social's Impact On Conversion and Attribution
Avatar for Stephen Akadiri stephenakadiri
1
170
How to Talk to Developers About Accessibility
Avatar for Jason CranfordTeague jct
2
160
Code Review Best Practice
Avatar for Trisha Gee trishagee
74
20k
[RailsConf 2023] Rails as a piece of cake
Avatar for Vladimir Dementyev palkan
59
6.4k
A brief & incomplete history of 
UX Design for the World Wide Web: 1989–2019
Avatar for Jason CranfordTeague jct
1
330
Unsuck your backbone
Avatar for Amy Palamountain ammeep
672
58k
The browser strikes back
Avatar for Jono Alderson jonoalderson
0
850
Jamie Indigo - Trashchat’s Guide to Black Boxes: Technical SEO Tactics for LLMs
Avatar for Tech SEO Connect techseoconnect
PRO
0
90

Transcript

  1. Do(n’t) try this at work Technically, you can do this

    Ben Bridts

  2. https://mobile.twitter.com/benbridts/status/1371812381161103362 https://via.benbridts.be/comsum/tweet

  3. https://twitter.com/ben11kehoe/status/1074288317108232192 https://via.benbridts.be/comsum/packrat

  4. https://sprocketfox.io/xssfox/2020/03/05/bigbuckopsworks/ https://via.benbridts.be/comsum/bigbucks

  5. https://github.com/njbmartin/diggydb-nodejs https://via.benbridts.be/comsum/diggy

  6. Using your access key

  7. AWS Management Console

  8. https://docs.aws.amazon.com/cli/latest/reference/iam/delete-login-profile.html

  9. https://docs.aws.amazon.com/IAM/latest/UserGuide/console_controlling-access.html More info: https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_providers_enable-console-custom-url.html

  10. None
  11. None
  12. None
  13. None

  14. https://signin.aws.amazon.com/federation? Action=login& Issuer=a+python+script& Destination=https%3A%2F%2Fconsole.aws.amazon.com%2F& SigninToken=ow8X9[...]XAyan

  15. Do • Simplify switching between accounts • Start a new

    browser for every account Don’t • Use credentials from EC2 / Lambda / CodeBuild / … • Block console access

  16. Infinite Storage

  17. AWS CloudShell

  18. https://aws.amazon.com/cloudshell/faqs/

  19. https://aws.amazon.com/cloudshell/faqs/

  20. https://signin.aws.amazon.com/switchrole https://docs.aws.amazon.com/cli/latest/reference/sts/assume-role.html

  21. None
  22. None

  23. https://botocore.amazonaws.com/v1/documentation/api/latest/reference/loaders.html

  24. https://github.com/iann0036/vscode-aws-cloudshell https://via.benbridts.be/comsum/vscode

  25. Reducing Errors The easy way

  26. Amazon CloudWatch

  27. None

  28. https://…execute-api.eu-west-1.amazonaws.com/Prod/run https://…execute-api.eu-west-1.amazonaws.com/Prod/run?fail=y

  29. None
  30. None
  31. None

  32. https://docs.aws.amazon.com/service-authorization/latest/reference/list_amazoncloudwatch.html

  33. None

  34. Thank you! Ben Bridts [email protected] @BenBridts | @WeAreCloudar www.cloudar.be