Skip to content

Instantly share code, notes, and snippets.

@an00byss

an00byss/awscli-cheatsheet.md

Forked from davidmoremad/awscli-cheatsheet.md
Created April 16, 2021 20:52
Show Gist options

  • Select an option

    Learn more about clone URLs
  • Save an00byss/b5e796468c205fa91bd71ff3c4aa447d to your computer and use it in GitHub Desktop.

Select an option

Learn more about clone URLs
Save an00byss/b5e796468c205fa91bd71ff3c4aa447d to your computer and use it in GitHub Desktop.
Download ZIP
The AWS CLI Cheatsheet
Raw
aws-cheatsheet.md

AWS CLI

Function Command
Install awscli pip3 install awscli --upgrade --user
Configuring awscli aws configure

EC2

UTILS - List all instances

aws ec2 describe-instances \

UTILS - List specific fields of all instances

aws ec2 describe-instances \
    --query "Reservations[].Instances[].[InstanceId, PublicIpAddress, Tags[?Key=='Name']|[0].Value]"

UTILS - List all instances of a product

aws ec2 describe-instances \
    --filter "Name=tag:Name,Values=latch*" \
    --query "Reservations[].Instances[].[InstanceId, PublicIpAddress, Tags[?Key=='Name']|[0].Value]"

UTILS - List all stopped instances

aws ec2 describe-instances \
    --filters Name=instance-state-name,Values=stopped

UTILS - List all stopped instances with ElasticIP

aws ec2 describe-instances \
    --query "Reservations[*].Instances[*].PublicIpAddress" \
    --filters Name=instance-state-name,Values=stopped

UTILS - List all snapshots in the date specified

aws ec2 describe-snapshots \
    --filters Name=start-time,Values=2019-01-05*

SEC - List all snapshots without encryption

aws ec2 describe-snapshots \
    --filters "Name=encrypted,Values=false"

SEC - List SecurityGroups with SSH open to Internet

aws ec2 describe-security-groups \
    --filters Name=ip-permission.from-port,Values=22 Name=ip-permission.to-port,Values=22 Name=ip-permission.cidr,Values='0.0.0.0/0'  \
    --query 'SecurityGroups[*].{Name:GroupName}' \
    --output table

IAM

Utils

Function Command
List all server certificates aws iam list-server-certificates
List all policies aws iam list-policies
List all groups aws iam list-groups
List all policies for a given group aws iam list-attached-group-policies --group-name ec2-Users
Get users for a specified for a given group aws iam get-group --group-name ec2-users
List groups for a given user aws iam list-groups-for-user --user-name aws-admin2

Security

Function Command
Rotate Keys. Created date of an AccessKey aws iam list-access-keys --user-name aws-admin2 --query 'AccessKeyMetadata[?Status==Active].[CreateDate]' --output text
Check if user has MFA enabled if [[ $(aws iam list-mfa-devices --user-name root --output text) ]]; then echo "MFA Enabled"; else echo "MFA Disabled";fi

S3

Utils

Function Command
List all s3 buckets aws s3 ls

Security

Function Command
Check for public READ s3 buckets `aws s3api list-buckets --query 'Buckets[*].[Name]' --output text
Check for public WRITE s3 buckets `aws s3api list-buckets --query 'Buckets[*].[Name]' --output text
Check for public FULL_CONTROL s3 buckets `aws s3api list-buckets --query 'Buckets[*].[Name]' --output text

RDS

Security

Function Command
List Databases without DeletionProtection enabled `aws rds describe-db-instances --query 'DBInstances[*].[DBInstanceIdentifier]' --output text
List Public Databases aws rds describe-db-instances --query 'DBInstances[?PubliclyAccessible==true].[DBInstanceIdentifier,Endpoint.Address]'`
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment