Useful aws cli rds commands i use often.

Get the full attributes of rds instances with its instancesidentifier

aws --profile=HA rds describe-db-instances --query 'DBInstances[?DBInstanceIdentifier==`evox-dev`]'

Some useful cloudtrail commands i use often.

AWS Docs

TIL -AWS has a nice api endpoint to get its ip ranges.

Not only you can query by service but also you can get notification of any changes to ip ranges by subscribing to SNS AmazonIpSpaceChanged. source

Setting up SQS as event source with serverless and cloudformation.

AWS recently announced SQS as an event source for lambda functions. This is now GA and looks like there is already a pr for it to to be soon implemened in serverless framework as well.

Useful github search queries

Search a npm package that is used in a project. This is useful to get ideas of how package is setup and used. github
rbac filename:package.json
Search repos with more than 100 stars. github

Server-Side Encryption with Customer-Provided Encryption Keys

Per AWS docs requirements for encryptions are:

Encrypting files with rsa key pairs.

My day job i use ssh… alot. When you manage hundreds of servers with mission critical infastructure running on passswordless login with ssh keys can be huge time saver. I also take security pretty seriously when it comes to store sensitive information and always looking to find better ways to store sensitive information securely and also in a convenient way for it to be not cumbersome. With that thought combining ssh keys to encrypt/decrypt files made quite sense so here is a quick write up to do it for anyone else that are interested in it.

Save screenshot to clipboard on OSX

Screenshots are saved as .png files on the desktop in Mac OS X v10.6 and later. They’re automatically named “Screen Shot date at time .png.” To save your screenshot to the Clipboard instead of a file on your desktop, use



OpenVpn Setup with Docker

This is a basic summary of excellent tutorial from Digital Ocean on how to setup OpenVpn with Docker.

Bastion Host Setup for CoreOS

A common server access pattern is to prevent any connection to your production servers from outside of their private subnet, and use a bastion host to access the private subnet. This pattern is very useful when you want to limit; for example ssh access, from only within the network.

Quickstart with Vault

Vault is a secure storage server that secures, stores, passwords, tokens, API keys etc. It is the from Hashicorp which had some great products such as Vault, Terraform and i think the most popular of all Vagrant. “Vault handles leasing, key revocation, key rolling, and auditing. I want to give a simple to follow setup example for anyone to try out this awesome tool.