☁️
CTHFM: AWS
  • Welcome
  • Getting Started
    • Account Setup
  • AWS CLI
    • AWS CLI Overview
    • Installation
  • AWS Fundamentals
    • AWS Documentation
    • AWS Shared Responsibility Model
    • Organizational Hierarchy
    • AWS Principals
    • IAM Fundamentals
      • IAM Policy Components
      • IAM Documentation References
    • AWS Security Services Overview
    • AWS Core Services
    • AWS Frameworks
    • Regions and Availability Zones
  • SQL
    • SQL Refresher for Threat Hunting
  • Logging Reference
    • Cloudtrail
      • What is Cloudtrail?
      • Setting Up Cloudtrail
      • Cloudtrail Events Structure
      • Filtering and Searching CloudTrail Logs
      • IAM ID Prefixes
      • Additional Resources
      • API References
    • VPCFlow Logs
    • GuardDuty
      • Multi-Account Setup
      • GuardDuty Concepts
      • GuardDuty Finding References
      • S3 Protection
      • Malware Protection
        • EC2 Malware Protection
          • EC2 Protection Resources
          • Monitoring Scans
          • EC2 Malware Protection Events: CloudWatch
        • S3 Malware Protection
          • Enabling S3 Malware Protection
          • After Enabling S3 Malware Protection
          • S3 Malware Resource Plan Status
          • S3 Malware Protection Quotas
      • RDS Protection Enablement
      • Lambda Protection Enablement
      • Trusted IP Lists and Threat Lists in Amazon GuardDuty
      • Remediation Recommendations
      • GuardDuty API Reference
      • GuardDuty Quotas
    • Access Analyzer
      • Setup
      • External Access and Unused Access Analyzer Findings
      • Review Findings
      • Access Analyzer Resources
      • Access Analyzer API Reference
    • AWS Network Firewall
      • Permissions
      • Firewall Log Contents
      • Logging Destinations
      • CloudWatch Firewall Metrics
    • AWS Config
      • Resource Management in AWS Config
      • AWS Config Integrations
      • AWS Config Resources
      • Configuration Item
      • Config Rules
        • Evaluation Modes
  • CloudWatch
    • Amazon CloudWatch
      • CloudWatch Concepts
      • CloudWatch Metrics
        • Filter Pattern Syntax
      • CloudWatch Alarms
        • Alarm Recommendations
      • Subscriptions
      • CloudWatch Agent
      • CloudWatch Insights
        • Supported Logs and Discovered Fields
        • CloudWatch Insights Query Syntax
      • Anomaly Detection
        • Create Anomaly Detector
        • Alarms for Anomaly Detections
      • CloudWatch Filter Syntax
      • CloudWatch Service Quota
  • Athena For Threat Hunting
    • Introduction to Athena
    • Setting Up Athena
    • SQL For Threat Hunters
    • Automated Response
    • Query Best Practices
  • AWS Security Research and Resources
    • AWS Security Blog
    • AWS Goat
    • Cloud Goat
    • Pacu
    • Prowler
    • Scout Suite
  • Threat Hunting in AWS
    • Threat Hunting in AWS
    • Threat Hunting Introduction
    • Threat Hunting Process
      • Hypothesis Generation
      • Investigation
      • Identification
      • Resolution & Follow Up
    • Pyramid of Pain
    • MITRE Att&ck
      • MITRE Att&ck Concepts
      • MITRE Att&CK Data Sources
      • MITRE Att&CK Mitigations
    • MITRE Att&ck: AWS
      • MITRE Att&CK Matrix
      • Amazon Web Services Security Control Mappings
    • AWS Threat Hunting Ideas
      • AWS Threat Hunting Ideas: EC2
      • AWS Threat Hunting Ideas: Lambda
      • AWS Threat Hunting Ideas: SQS
      • AWS Threat Hunting Ideas: SNS
      • AWS Threat Hunting Ideas: RDS
Powered by GitBook
On this page
  • Overview
  • Key Features of AWS CLI
  • Basic AWS CLI Commands
  • How AWS CLI Can Help You
  • Best Practices for AWS CLI
  1. AWS CLI

AWS CLI Overview

Overview

The AWS CLI (Command Line Interface) is a powerful tool that allows users to interact with AWS services directly from the command line, providing an efficient way to manage cloud resources through scripts and commands. Instead of using the AWS Management Console (web interface), you can perform operations faster and automate tasks using AWS CLI.

Key Features of AWS CLI

  • Manage AWS Resources Programmatically: Create, modify, and delete services like EC2 instances, S3 buckets, and Lambda functions using commands.

  • Automation: Useful for scripting repetitive tasks (e.g., provisioning resources, backups, deployments).

  • Consistent Across Platforms: Works on Linux, macOS, and Windows.

  • Access to Most AWS Services: The CLI supports nearly all AWS services.

Basic AWS CLI Commands

  1. List all S3 buckets:

    aws s3 ls

  2. Upload a file to an S3 bucket:

    aws s3 cp myfile.txt s3://my-bucket-name/

  3. Start an EC2 instance:

    aws ec2 start-instances --instance-ids i-0123456789abcdef0

  4. Describe Lambda functions:

    aws lambda list-functions

How AWS CLI Can Help You

  • Automation: Automate backup processes, deployments, and scheduled tasks.

  • Scriptability: Combine multiple commands into powerful scripts (e.g., shell or Python).

  • Multi-Account Management: Manage multiple AWS accounts by switching profiles.

  • Resource Management: Quickly create and manage services without navigating the AWSS console.

Best Practices for AWS CLI

  • Use IAM Roles over Users: When possible, use roles to access resources instead of long-term access keys.

  • Enable MFA: Secure your account by requiring MFA for certain operations.

  • Use Profiles for Multiple Accounts: Configure multiple profiles in the ~/.aws/credentials file for managing multiple accounts.

    aws configure --profile my-other-account
PreviousAccount SetupNextInstallation

Last updated 8 months ago