Michael KirchnerWhat is the probability that you can successfully assume an IAM role in a random AWS account?Many resources on AWS can be configured to allow public access, using their resource-based policies. S3 buckets are a well-known example…Aug 151Aug 151
Michael KirchnerinAWS TipSharing a single CloudTrail across all accounts of an AWS OrganizationThis article shows how you can configure an Organization-wide CloudTrail and selectively share the logs with the respective source…Oct 9, 20231Oct 9, 20231
Michael KirchnerinAWS TipCombining memory- and disk-based caching to accelerate AWS Lambda functionsThis article shows how you can use the /tmp directory offered by AWS Lambda to speed up function executions and how to use a combined…Oct 4, 20232Oct 4, 20232
Michael KirchnerinAWS TipTen recommendations for when you access customer AWS accountsThis article offers a collection of recommendations and best practices you can follow when your customer trusts you or your SaaS product…Aug 27, 2023Aug 27, 2023
Michael KirchnerinAWS TipLinting AWS IAM policiesThis article shows you how you can check whether your AWS IAM policies violate security best practices or contain errors — at scale.Aug 14, 2023Aug 14, 2023
Michael KirchnerinAWS TipDetecting AWS cost spikes for central teamsThis article shows you two methods how central teams can receive warnings about AWS accounts where costs are about to spike — before the…Jun 9, 2023Jun 9, 2023
Michael KirchnerinAWS TipVisualizing API call activity in your AWS accountThis article shows you how you can get a visual overview of the API call activities going on in your AWS account. Get an overview of which…May 6, 20231May 6, 20231
Michael KirchnerinAWS TipHow to get an overview of activities going on within an AWS accountThis article shows how the default CloudTrail logging available in each AWS account can be used to generate nice overviews of account…Apr 3, 2023Apr 3, 2023
Michael KirchnerExploring AWS Resource ExplorerI recently published a blog post on how to list all resources in your AWS account. Only a few weeks later, AWS launched a new service…Nov 13, 2022Nov 13, 2022
Michael KirchnerinAWS TipHow to increase reliability when granting permissions to IAM users or roles on AWSThe IAM policy language allows you to give permissions to IAM users or roles to access specific resources, such as S3 buckets or…Oct 26, 2022Oct 26, 2022