Programmatically set Public Block on AWS S3 Buckets

aws

Recently, we have all seen many reports of AWS buckets that contained private data that were misconfigured and fully open to the public. Whether the result is slight embarrassment or a serious exfiltration of data, the risk of a misconfigured bucket can be mitigated fairly easily. Amazon S3 buckets can… Continue reading

Use Boto3 to Recover Deleted Files in AWS S3 Bucket

Recover Deleted Files

So it happened. One of our techs ‘accidentally’ deleted all the directories and files in one of our S3 buckets. I enabled S3 Bucket Versioning on all our important buckets. So the deleted files are still there with the ‘latest version’ of the file being a Delete Marker. If you… Continue reading

Using Boto3 to find Users and HostRoles with certain AWS Policy

Recently I was asked to scour multiple AWS accounts to find any users or host role that had the S3FullAccess policy applied.    So I came up with the following that will go through all users and roles to identify the ones with the S3FullAccess policy assigned. You can use this… Continue reading