Alerting is one of the 5 A's of Cloud Security. There are countless metrics you can alert on in AWS, but the most important is the budget. Most developers I speak to don't equate spend to
Your First Alert: Budget
Get Straight A's on your AWS Security
AWS in 2025 is complex. With over 16,000 API methods, 400 service namespaces, and more than 18,000 permissions, mastering AWS is challenging enough. Securing it properly while maintaining this complexity? That seems nearly impossible. Yet security doesn'
AWS IDC migration commands
This post original appeared on the CommonFate.io blog. Still using IAM Users for AWS access? You're not alone. According to Datadog's 2024 State of Cloud Security report, 46% of organizations still rely on IAM Users
Moving from IAM Users to AWS Identity Center
This post original appeared on the CommonFate.io blog. If you’re the administrator or owner of an AWS environment and are still relying on IAM users for your human users to access AWS IAM, then you should be considering
Programmatic AWS Action List!
It's happened. It's finally here. No, I'm not talking about the next iPhone. I'm talking about programmatic access to the AWS IAM action list! Wait, what do you mean "I'
Find deprecated Lambda runtimes in your environment
List all AWS Lambda functions running deprecated runtimes in your environment as a spreadsheet.
Passing the AWS Security Speciality in 2024 (SCS-C02)
Last week I passed the latest version of the AWS Security Speciality (SCS-C02). The Security Speciality certification assesses your knowledge of the various AWS security services, and the security capabilities of more general services offered by AWS. Big shoutout to
CloudFront OAC for S3 policy
Set up OAC between CloudFront and your bucket with aws:SourceArn.