#97: Hacking AWS Account

Get ready for another exciting edition of the DevOps weekly newsletter! This week, I've got a lot in store for you.

Learn how to set up a robust CI/CD pipeline for your Serverless app using AWS SAM and GitHub Actions. Also, uncover the vulnerabilities in AWS Lambda that can be exploited to hack into an AWS account via SSRF.

If you're interested in writing better incident reports, don't miss an article on how to write incident reports that people actually want to read. Plus, discover how to test Step Functions locally with Docker, how to optimize problematic MySQL queries with MySQL EXPLAIN, and how to set up a headless browser with AWS Lambda in production.

In addition, I've got a comprehensive guide to Terraform security best practices, as well as an ultimate guide to DynamoDB streams.

Don't forget to check out our open-source projects of the week, including a CLI designed to make Git easier to use, ZeusCloud, an open-source cloud security platform, and an experimental PostgreSQL extension that brings OpenAI API to your queries.

This is one DevOps newsletter you won't want to miss!

📖 POSTS OF THE WEEK

Build a Serverless Gym App with ChatGPT, Twilio and WhatsApp
Build a Serverless workout generator using AWS Lambda, Golang, ChatGPT, Twilio, and WhatsApp, and set up a CI/CD pipeline with SAM and GitHub Actions.
Read more »

"Hacking AWS account via AWS Lambda SSRF" - SSRF scenario on AWS Lambda and how it can be dangerous for your AWS environment - Read more »

"Incident write-ups they want to read" - How to write incident reports that people want to read, whether public or internal-only - Read more »

"How to test Step Functions state machine locally" - How to implement Step Functions Local using Docker to test all state machine paths in isolation - Read more »

"How to read MySQL EXPLAINs" - How to utilize MySQL EXPLAIN to remedy problematic queries - Read more »

"Serverless Puppeteer" - How to setup a headless browser with AWS Lambda in production - Read more »

"Terraform security best practices" - Guidance for using Terraform in a secure way by reference to some security best practices - Read more »

"What you should know about DynamoDB Streams" - Practical post on how to use, when to use and why you should DynamoDb streams - Read more »

🛠 PROJECTS OF THE WEEK

1️⃣ Gut is a CLI designed to make Git easier to use - Learn more »

2️⃣ Effortlessly enumerate your AWS Account with Balcony - Learn more »

3️⃣ Open Source Webhooks Gateway; For both incoming & outgoing events - Learn more »

4️⃣ Cfnctl brings the Terraform cli experience to AWS CloudFormation - Learn more »

5️⃣ ZeusCloud is an open source cloud security platform - Learn more »

6️⃣ Experimental extension that brings OpenAI API to your PostgreSQL to run queries in human language - Learn more »

📰 NEWSWORTHY STORIES

"Read every single error" - Read more »

"S3 as an eternal service" - Read more »

"Immutable Linux distributions" - Read more »

📕 BOOK OF THE WEEK

Not a tech book but highly recommended if you want to increase your productivity. "The 80/20 Rule" is a book that talks about a simple idea: 80% of the good things that happen in our lives come from only 20% of the things we do. The book explains how this idea can be applied to many different parts of our lives, like work, relationships, and personal goals.

💼 OPEN JOBS OF THE WEEK

Engineering Manager @Starburst
AWS, MySQL, GCP
🌎 Remote, anywhere
Read more »

DevOps Engineer @Revolut
Docker, AWS, Jenkins
🌎 Remote, europe
Read more »

Senior Infrastructure Engineer @IVPN
Linux, Python, Security
🌎 Remote, anywhere
Read more »

Hand-picked DevOps opportunities to work from home, remotely, freelance, full-time, part-time, contract and internships - See more »

💡 THREAD OF THE WEEK

Nice April's fool 😅

😂 MEMES OF THE WEEK

I hope you enjoy this week’s newsletter! Share it with a friend or colleague if you find it helpful, drop me an email or send me a DM on Twitter about topics you’d like to hear about in future editions.

Remember to share if you enjoyed this issue!

Share

Forward

DevOps Bulletin - Digest #97: Hacking AWS Account 😰

#97: Hacking AWS Account

Older messages

Digest #96: Kubernetes Broke Reddit 😳

Digest #95: ChatGPT for DevOps 😎

Digest #94: Postgres Explained 😎

Digest #93: Why Use Message Brokers 👀

Digest #92: Infrastructure Drift 🔎

You Might Also Like

Import AI 399: 1,000 samples to make a reasoning model; DeepSeek proliferation; Apple's self-driving car simulator

Defining Your Paranoia Level: Navigating Change Without the Overkill

5 ways AI can help with taxes 🪄

Recurring Automations + Secret Updates

The First Provable AI-Proof Game: Introducing Butterfly Wings 4

GCP Newsletter #437

Charted | The 1%'s Share of U.S. Wealth Over Time (1989-2024) 💰

The Great Social Media Diaspora & Tapestry is here

Daily Coding Problem: Problem #1689 [Medium]

📧 Stop Conflating CQRS and MediatR