• Stars
    star
    461
  • Rank 95,028 (Top 2 %)
  • Language
    Python
  • License
    Apache License 2.0
  • Created about 9 years ago
  • Updated about 1 year ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

A Dynamic DNS system built with API Gateway, Lambda & Route 53.

route53-dynamic-dns-with-lambda

A Dynamic DNS system built with API Gateway, Lambda & Route 53.

This repository originally supplemented the blog post: Building a Serverless Dynamic DNS System with AWS
Code and instructions for the version described in the blog can be found in the v1 folder of this repository.

The project implements a serverless dynamic DNS system using AWS Lambda, Amazon API Gateway, Amazon Route 53 and Amazon DynamoDB.
A bash reference client route53-ddns-client.sh is included, but the api calls for the system can be easily implemented in other languages.
The benefits and overall architecture of the system described in Building a Serverless Dynamic DNS System with AWS are still accurate.

The current project supports:

  • One step provisioning via AWS CloudFormation
  • System configuration in Amazon DynamoDB
  • ipv6 support
  • Internal ip address (rfc1918) support
  • Custom API endpoint hostname
  • Network discovery: Enables a single host on a network segment to set DNS entries for multiple other hosts on the same network.

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

Setup Guide

Deploy the CloudFormation Template:

Set the CloudFormation Stack parameters

  • Stack name - required
    All Stack resources are named using the CloudFormation Stack name you choose.
    Because of this, the Stack name must be compatible with the name restrictions of all services deployed by the stack.
    Only use lower case letters, numbers '_' and '-'

  • route53ZoneName - required
    Route53 Zone name. ie 'example.com'
    Use either existing zone or name of zone to be created by the stack.
    Zone name must not end in '.'
    If using an existing zone, route53ZoneName must match the name of the zone passed in route53ZoneId.
    For Private Hosted Zones, you must use an existing zone.

All remaining parameters can be left blank or at defaults.

  • route53ZoneId
    Populate to use an existing zone. ie 'Z1FXLQ1OABKR4O'
    The zone must exist in the same account as the stack.
    If omitted, a new Route53 DNS zone will be created.
    If supplied, the ddns system will gain IAM permissions to modify existing zone entries.

  • defaultTtl
    The default TTL for DNS records, can be overridden for individual records in DynamoDB config.

  • enableCloudFront
    CloudFront is required for ipv6 support or to use a custom API Alias (CNAME).
    Note that the Stack creation will not complete until after the CloudFront distribution is done propagating. This adds several munites to Stack creation time.
    -false - Call API Gateway directly
    -withCustomAlias - Required for ipv6 and/or apiCname
    -withoutCustomAlias - Required for ipv6

  • apiCname
    API Endpoint Custom Alias
    Required for enableCloudFront withCustomAlias
    Will create a CNAME to your API endpoint in the route53ZoneName supplied.
    i.e. entering 'ddns' for route53ZoneName 'example.com' will create the CNAME 'ddns.example.com'

  • useApiKey
    Adds an API Key to your API Gateway.
    Requests to the API without the proper key are blocked instead of passing through to Lambda.
    This prevents DOS/resource depletion attacks against your Lambda backend.
    The auto-generated key is published to the stack outputs.

  • acmCertificateArn
    Required to use a custom dns endpoint (Alias) for your API.
    Populate to use an existing ACM Certificate. (CloudFormation will not create a certificate on your behalf.)
    Full ARN of an ACM SSL Certificate:
    i.e. 'arn:aws:acm:us-east-1:123456789012:certificate/a1aaab22-11ab-ab12-cd34-12345abc0ab0'
    The certificate must be in us-east-1 (Virginia) Region.
    The certificate can either match the API endpoint custom alias. i.e. 'ddns.example.com'
    or the entire zone i.e. '*.example.com'
    See: Request a Public Certificate

  • CloudFrontPriceClass
    Leave at default unless you are accessing from outside US, Canada & Europe.
    See documentation.
    -US-Canada-Europe
    -US-Canada-Europe-Asia
    -All-Edge-Locations

  • DynamoDB Configuration
    Sets the provisioned capacity of the DynamnoDB table built by CloudFormation.
    ddbRcu & ddbWcu set the Read & Write capacity units for the DynamnoDB table.
    ddbGsiRcu & ddbGsiWcu set the Read & Write capacity units for the DynamnoDB Global Secondary Index.
    Leave at defaults for small scale deployments.
    Provisioned capacity affects both scalability and cost.

  • templateVersion
    Sometimes required to force a stack update or force Lambda-backed custom resources to run.
    The system does not actually track the version, if needed increment or simply change it to another arbitrary digit.

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

CloudFormation Stack Outputs

When Stack creation is complete you may need to look at the Outputs for information necessary to proceed with setup.

ddns Stack Outputs:

  • apiUrl
    Use this as your API endpoint
    It is a calculated output based on your Parameter choices.
    It will either reflect the API Gateway, CloudFront, or Custom Alias of the API.

  • apiOriginURL
    The API Gateway endpoint URL

  • cloudFrontURL
    The CloudFront endpoint URL

  • route53ZoneID

  • route53ZoneName

  • DNSZoneNameServers
    Name servers associated with your zone.
    If the Stack built a new Zone, use these to:
    Associate the Zone with your registered Domain,
    or delegate the zone as a subdomain.

  • apiKey
    API Key generated by the stack. Pass as argument to sample clients.
    To use in curl, pass as -H 'x-api-key: myApikeyPastedFromOutputs'

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

Configuration Guide

The system creates a DynamoDB Table for configuration named [stackName]-config.
You must create an Item (row) for each Route53 DNS entry managed by the system.
The Table is pre-populated with two example Items to duplicate and modify.
Note that some attributes are for configuration, while others (marked read-only below) reflect state information from the system.

Configuration Table Attributes

  • hostname
    The hostname of the dns record.

  • record_type
    A for ipv4 or AAAA for ipv6 records
    Note that hostname and record_type form the composite primary key for the Table.
    The combination of the two Attributes in each Item must be unique.

  • allow_internal
    Boolean to control whether the record can be set to an internal (rfc1918) address
    See Security Considerations

  • comment
    For your reference only, unused by ddns.

  • ip_address - read-only
    Reflects the last IP address set for the record by the ddns system

  • last_accessed - read-only
    Reflects the last public IP address from which the record was read or modified

  • last_checked - read-only
    Reflects the last time the record was read by the ddns system

  • last_updated - read-only
    Reflects the last time the record was modified by the ddns system

  • lock_record
    Boolean to prevent ddns from modifying the corresponding Route53 record
    The deletion/omission of an Item will also prevent Route53 record creation or modification.
    See Security Considerations

  • mac_address
    Set the mac address of the host to associate with the Route53 record
    Optional, used by Network Discovery

  • read_privilege
    Boolean to allow read access by another host
    Optional, used by Network Discovery

  • shared_secret
    Password used by client to modify Route53 record
    See Security Considerations/Authentication
    Optional: Network Discovery uses shared_secret to group records

  • ttl
    Set for (in seconds) custom Route53 record TTL.

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

Security Considerations

Route53/DNS

  • The ddns system gains permissions to modify records in the configured Route53 Zone.
    If you are concerned about allowing the system to modify an existing Zone, you can create a
    new Zone as a delegated subdomain.
    See Route53 Setup for instructions.
    Note that delegated subdomains do not work with private zones.

  • The ddns system will not modify or create a record if a matching Item is not found in DynamoDB
    or a matching matching Item is found, but it's lock_record attribute is true.

Authentication and Authorization

  • Reference for API Gateway API Keys / Usage Plans

  • When the client makes an API request to modify a record, it passes a token generated by hashing:
    -The public IP of the requesting host or network
    -The hostname to be set
    -The shared secret associated with the hostname's Item in DynamoDB
    Note that the public IP is discovered by an initial client request to the API in get mode.
    Then API then reflects the client's public IP in the JSON response.

  • The API (via Lambda) re-creates and matches the hash the IP of the request and a lookup of the
    shared_secret attribute from DynamoDB.

  • It then sets the dns record to the requestor's public ipv4 or ipv6 address.

  • When setting a private IP, the client can request that any valid ipv4 or ipv6 address be set into the record.
    If the allow_internal configuration Attribute is set to false, the system will not set arbitrary IP addresses.

Known issues

  • The system could be vulnerable to request-replay attack via a man-in-the-middle.
    As designed, it relies on the security of ssl/tls to secure transmissions.
    We are evaluating whether it makes sense to add a timestamp to the hash to mitigate this.

  • Publishing private ipv4 addresses to a public Route53 Zone leaks those addresses publicly.

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

Network Discovery

Network Discovery enables a single host to set dns entries for other hosts on the same network.
This removes the need to install a client on all hosts, and enables creation of dns entries for devices unable to run a client.

  • To enable this feature, create host groups in the DynamnoDB config table.
  • Hosts with matching shared_secret Attributes and the read_privilege set to true form a group.
  • The mac_address Attribute must also be set correctly in DynamoDB for each host in the group.
  • Any host within a group can make requests to set Route53 records on behalf of other hosts in the group.

Process:

  • The client makes an authenticated list_hosts request to the API.
  • The API returns json containing the hostname, mac_address & record_type for each host in the group.
    {"record_type": "A","hostname": "foo.example.com.","mac_address": "51:6B:00:A6:F5:77"}]
  • The client makes an ARP (ipv4) request to find the ip address of each host by mac address.
    arp |grep 51:6B:00:A6:F5:77
    (192.168.0.20) at 51:6B:00:A6:F5:77 [ether] on eth0
    For ipv6, the client can use ndp -an or ip -6 neigh instead of ARP (depending on OS).
  • The client then makes the API request to set other host's dns using the discovered ip addresses.
  • A reference client network-discovery.sh is included. It's a wrapper script that uses route53-ddns-client.sh to call the actual API.
  • The reference client uses local os cache via arp, ip or ndp commands to discover and match ip addresses to mac addresses.
    Note: The host running the network-discovery may not have all hosts in its cache at any given time.
    For ipv4, you could use nmap to scan the network. This method is impractical for ipv6 considering the huge number of potential addresses.
    Network discovery will not work as implemented inside a VPC as VPC is unicast only.
    If you have feedback on the utility of network-discovery or thoughts on improvements, please let us know!
Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

API reference

Examples of interacting with the API using curl

  • IP Address Reflector - mode=get
    curl -q --ipv4 -s https://ddns.example.com?mode=get
    curl -q --ipv6 -s https://ddns.example.com?mode=get

  • Using an API Key - required for all requests if enabled
    Replace voN8GxIEvPf with key published in your stack outputs.
    curl -q --ipv4 -s -H 'x-api-key: voN8GxIEvPf' https://ddns.example.com?mode=get
    curl -q --ipv6 -s -H 'x-api-key: voN8GxIEvPf' "https://ddns.example.com?mode=set&hostname=foo.example.com&hash=ABCD123"

  • Generating the hash token needed for all other API requests
    mySharedSecret=123abc
    myPublicIP=73.222.111.6
    myHostname=test.example.com.
    Note that hostname must end in a '.'
    echo -n "$myPublicIP$myHostname$mySharedSecret" | shasum -a 256

  • Set public ip - mode=set
    curl -q --ipv4 -s "https://ddns.example.com?mode=set&hostname=foo.example.com&hash=ABCD123"
    curl -q --ipv6 -s "https://ddns.example.com?mode=set&hostname=foo.example.com&hash=ABCD123"

  • Set private ip - mode=set
    curl -q -s "https://ddns.example.com?mode=set&hostname=foo.example.com&hash=ABCD123&internalIp=192.168.0.1"
    curl -q -s "https://ddns.example.com?mode=set&hostname=foo.example.com&hash=ABCD123&internalIp=2500:1ff3:e0e:4501:8cf0:c278:da3d:4120"
    Note that you can set either ipv4 or ipv6 private addresses regardless of the protocol used by curl.

  • List hosts in group for network discovery - mode=list_hosts
    curl -q -s "https://ddns.example.com?mode=list_hosts&hostname=foo.example.com&hash=ABCD123"

Navigate | Top | Setup | Outputs | Configuration | Security | Network Discovery | API Reference |

More Repositories

1

git-secrets

Prevents you from committing secrets and credentials into git repositories
Shell
11,616
star
2

llrt

LLRT (Low Latency Runtime) is an experimental, lightweight JavaScript runtime designed to address the growing demand for fast and efficient Serverless applications.
JavaScript
8,074
star
3

aws-shell

An integrated shell for working with the AWS CLI.
Python
7,182
star
4

mountpoint-s3

A simple, high-throughput file client for mounting an Amazon S3 bucket as a local file system.
Rust
4,475
star
5

autogluon

AutoGluon: AutoML for Image, Text, and Tabular Data
Python
4,348
star
6

gluonts

Probabilistic time series modeling in Python
Python
3,686
star
7

aws-sdk-rust

AWS SDK for the Rust Programming Language
Rust
3,014
star
8

deequ

Deequ is a library built on top of Apache Spark for defining "unit tests for data", which measure data quality in large datasets.
Scala
2,871
star
9

aws-lambda-rust-runtime

A Rust runtime for AWS Lambda
Rust
2,829
star
10

amazon-redshift-utils

Amazon Redshift Utils contains utilities, scripts and view which are useful in a Redshift environment
Python
2,643
star
11

diagram-maker

A library to display an interactive editor for any graph-like data.
TypeScript
2,359
star
12

amazon-ecr-credential-helper

Automatically gets credentials for Amazon ECR on docker push/docker pull
Go
2,261
star
13

amazon-eks-ami

Packer configuration for building a custom EKS AMI
Shell
2,164
star
14

aws-lambda-powertools-python

A developer toolkit to implement Serverless best practices and increase developer velocity.
Python
2,148
star
15

aws-well-architected-labs

Hands on labs and code to help you learn, measure, and build using architectural best practices.
Python
1,834
star
16

aws-config-rules

[Node, Python, Java] Repository of sample Custom Rules for AWS Config.
Python
1,473
star
17

smithy

Smithy is a protocol-agnostic interface definition language and set of tools for generating clients, servers, and documentation for any programming language.
Java
1,356
star
18

aws-support-tools

Tools and sample code provided by AWS Premium Support.
Python
1,290
star
19

open-data-registry

A registry of publicly available datasets on AWS
Python
1,199
star
20

sockeye

Sequence-to-sequence framework with a focus on Neural Machine Translation based on PyTorch
Python
1,181
star
21

aws-lambda-powertools-typescript

Powertools is a developer toolkit to implement Serverless best practices and increase developer velocity.
TypeScript
1,179
star
22

dgl-ke

High performance, easy-to-use, and scalable package for learning large-scale knowledge graph embeddings.
Python
1,144
star
23

aws-sdk-ios-samples

This repository has samples that demonstrate various aspects of the AWS SDK for iOS, you can get the SDK source on Github https://github.com/aws-amplify/aws-sdk-ios/
Swift
1,038
star
24

amazon-kinesis-video-streams-webrtc-sdk-c

Amazon Kinesis Video Streams Webrtc SDK is for developers to install and customize realtime communication between devices and enable secure streaming of video, audio to Kinesis Video Streams.
C
1,031
star
25

aws-sdk-android-samples

This repository has samples that demonstrate various aspects of the AWS SDK for Android, you can get the SDK source on Github https://github.com/aws-amplify/aws-sdk-android/
Java
1,018
star
26

aws-solutions-constructs

The AWS Solutions Constructs Library is an open-source extension of the AWS Cloud Development Kit (AWS CDK) that provides multi-service, well-architected patterns for quickly defining solutions
TypeScript
1,013
star
27

aws-lambda-go-api-proxy

lambda-go-api-proxy makes it easy to port APIs written with Go frameworks such as Gin (https://gin-gonic.github.io/gin/ ) to AWS Lambda and Amazon API Gateway.
Go
1,005
star
28

aws-cfn-template-flip

Tool for converting AWS CloudFormation templates between JSON and YAML formats.
Python
991
star
29

eks-node-viewer

EKS Node Viewer
Go
947
star
30

multi-model-server

Multi Model Server is a tool for serving neural net models for inference
Java
936
star
31

ec2-spot-labs

Collection of tools and code examples to demonstrate best practices in using Amazon EC2 Spot Instances.
Jupyter Notebook
905
star
32

aws-mobile-appsync-sdk-js

JavaScript library files for Offline, Sync, Sigv4. includes support for React Native
TypeScript
902
star
33

aws-saas-boost

AWS SaaS Boost is a ready-to-use toolset that removes the complexity of successfully running SaaS workloads in the AWS cloud.
Java
901
star
34

fargatecli

CLI for AWS Fargate
Go
891
star
35

fortuna

A Library for Uncertainty Quantification.
Python
882
star
36

aws-api-gateway-developer-portal

A Serverless Developer Portal for easily publishing and cataloging APIs
JavaScript
879
star
37

ecs-refarch-continuous-deployment

ECS Reference Architecture for creating a flexible and scalable deployment pipeline to Amazon ECS using AWS CodePipeline
Shell
842
star
38

dynamodb-data-mapper-js

A schema-based data mapper for Amazon DynamoDB.
TypeScript
818
star
39

goformation

GoFormation is a Go library for working with CloudFormation templates.
Go
812
star
40

flowgger

A fast data collector in Rust
Rust
796
star
41

aws-js-s3-explorer

AWS JavaScript S3 Explorer is a JavaScript application that uses AWS's JavaScript SDK and S3 APIs to make the contents of an S3 bucket easy to browse via a web browser.
HTML
771
star
42

aws-icons-for-plantuml

PlantUML sprites, macros, and other includes for Amazon Web Services services and resources
Python
737
star
43

aws-devops-essential

In few hours, quickly learn how to effectively leverage various AWS services to improve developer productivity and reduce the overall time to market for new product capabilities.
Shell
674
star
44

aws-apigateway-lambda-authorizer-blueprints

Blueprints and examples for Lambda-based custom Authorizers for use in API Gateway.
C#
660
star
45

amazon-ecs-nodejs-microservices

Reference architecture that shows how to take a Node.js application, containerize it, and deploy it as microservices on Amazon Elastic Container Service.
Shell
650
star
46

aws-deployment-framework

The AWS Deployment Framework (ADF) is an extensive and flexible framework to manage and deploy resources across multiple AWS accounts and regions based on AWS Organizations.
Python
636
star
47

amazon-kinesis-client

Client library for Amazon Kinesis
Java
621
star
48

aws-lambda-web-adapter

Run web applications on AWS Lambda
Rust
610
star
49

dgl-lifesci

Python package for graph neural networks in chemistry and biology
Python
594
star
50

data-on-eks

DoEKS is a tool to build, deploy and scale Data & ML Platforms on Amazon EKS
HCL
590
star
51

aws-security-automation

Collection of scripts and resources for DevSecOps and Automated Incident Response Security
Python
585
star
52

aws-glue-libs

AWS Glue Libraries are additions and enhancements to Spark for ETL operations.
Python
565
star
53

python-deequ

Python API for Deequ
Python
535
star
54

aws-athena-query-federation

The Amazon Athena Query Federation SDK allows you to customize Amazon Athena with your own data sources and code.
Java
507
star
55

amazon-dynamodb-lock-client

The AmazonDynamoDBLockClient is a general purpose distributed locking library built on top of DynamoDB. It supports both coarse-grained and fine-grained locking.
Java
469
star
56

shuttle

Shuttle is a library for testing concurrent Rust code
Rust
465
star
57

ami-builder-packer

An example of an AMI Builder using CI/CD with AWS CodePipeline, AWS CodeBuild, Hashicorp Packer and Ansible.
465
star
58

aws-servicebroker

AWS Service Broker
Python
461
star
59

diagram-as-code

Diagram-as-code for AWS architecture.
Go
459
star
60

amazon-ecs-local-container-endpoints

A container that provides local versions of the ECS Task Metadata Endpoint and ECS Task IAM Roles Endpoint.
Go
456
star
61

datawig

Imputation of missing values in tables.
JavaScript
454
star
62

aws-jwt-verify

JS library for verifying JWTs signed by Amazon Cognito, and any OIDC-compatible IDP that signs JWTs with RS256, RS384, and RS512
TypeScript
452
star
63

aws-config-rdk

The AWS Config Rules Development Kit helps developers set up, author and test custom Config rules. It contains scripts to enable AWS Config, create a Config rule and test it with sample ConfigurationItems.
Python
444
star
64

ecs-refarch-service-discovery

An EC2 Container Service Reference Architecture for providing Service Discovery to containers using CloudWatch Events, Lambda and Route 53 private hosted zones.
Go
444
star
65

ssosync

Populate AWS SSO directly with your G Suite users and groups using either a CLI or AWS Lambda
Go
443
star
66

handwritten-text-recognition-for-apache-mxnet

This repository lets you train neural networks models for performing end-to-end full-page handwriting recognition using the Apache MXNet deep learning frameworks on the IAM Dataset.
Jupyter Notebook
442
star
67

awscli-aliases

Repository for AWS CLI aliases.
437
star
68

snapchange

Lightweight fuzzing of a memory snapshot using KVM
Rust
436
star
69

threat-composer

A simple threat modeling tool to help humans to reduce time-to-value when threat modeling
TypeScript
426
star
70

aws-security-assessment-solution

An AWS tool to help you create a point in time assessment of your AWS account using Prowler and Scout as well as optional AWS developed ransomware checks.
423
star
71

lambda-refarch-mapreduce

This repo presents a reference architecture for running serverless MapReduce jobs. This has been implemented using AWS Lambda and Amazon S3.
JavaScript
422
star
72

aws-lambda-cpp

C++ implementation of the AWS Lambda runtime
C++
409
star
73

pgbouncer-fast-switchover

Adds query routing and rewriting extensions to pgbouncer
C
396
star
74

aws-sdk-kotlin

Multiplatform AWS SDK for Kotlin
Kotlin
392
star
75

aws-cloudsaga

AWS CloudSaga - Simulate security events in AWS
Python
389
star
76

amazon-kinesis-producer

Amazon Kinesis Producer Library
C++
385
star
77

soci-snapshotter

Go
383
star
78

serverless-photo-recognition

A collection of 3 lambda functions that are invoked by Amazon S3 or Amazon API Gateway to analyze uploaded images with Amazon Rekognition and save picture labels to ElasticSearch (written in Kotlin)
Kotlin
378
star
79

amazon-sagemaker-workshop

Amazon SageMaker workshops: Introduction, TensorFlow in SageMaker, and more
Jupyter Notebook
378
star
80

serverless-rules

Compilation of rules to validate infrastructure-as-code templates against recommended practices for serverless applications.
Go
378
star
81

logstash-output-amazon_es

Logstash output plugin to sign and export logstash events to Amazon Elasticsearch Service
Ruby
374
star
82

kinesis-aggregation

AWS libraries/modules for working with Kinesis aggregated record data
Java
370
star
83

smithy-rs

Code generation for the AWS SDK for Rust, as well as server and generic smithy client generation.
Rust
369
star
84

syne-tune

Large scale and asynchronous Hyperparameter and Architecture Optimization at your fingertips.
Python
367
star
85

graphstorm

Enterprise graph machine learning framework for billion-scale graphs for ML scientists and data scientists.
Python
366
star
86

dynamodb-transactions

Java
354
star
87

amazon-kinesis-client-python

Amazon Kinesis Client Library for Python
Python
354
star
88

aws-sigv4-proxy

This project signs and proxies HTTP requests with Sigv4
Go
351
star
89

aws-serverless-data-lake-framework

Enterprise-grade, production-hardened, serverless data lake on AWS
Python
349
star
90

amazon-kinesis-agent

Continuously monitors a set of log files and sends new data to the Amazon Kinesis Stream and Amazon Kinesis Firehose in near-real-time.
Java
342
star
91

rds-snapshot-tool

The Snapshot Tool for Amazon RDS automates the task of creating manual snapshots, copying them into a different account and a different region, and deleting them after a specified number of days
Python
337
star
92

amazon-kinesis-scaling-utils

The Kinesis Scaling Utility is designed to give you the ability to scale Amazon Kinesis Streams in the same way that you scale EC2 Auto Scaling groups – up or down by a count or as a percentage of the total fleet. You can also simply scale to an exact number of Shards. There is no requirement for you to manage the allocation of the keyspace to Shards when using this API, as it is done automatically.
Java
333
star
93

amazon-kinesis-video-streams-producer-sdk-cpp

Amazon Kinesis Video Streams Producer SDK for C++ is for developers to install and customize for their connected camera and other devices to securely stream video, audio, and time-encoded data to Kinesis Video Streams.
C++
332
star
94

landing-zone-accelerator-on-aws

Deploy a multi-account cloud foundation to support highly-regulated workloads and complex compliance requirements.
TypeScript
330
star
95

statelint

A Ruby gem that provides a command-line validator for Amazon States Language JSON files.
Ruby
330
star
96

generative-ai-cdk-constructs

AWS Generative AI CDK Constructs are sample implementations of AWS CDK for common generative AI patterns.
TypeScript
327
star
97

route53-infima

Library for managing service-level fault isolation using Amazon Route 53.
Java
326
star
98

aws-automated-incident-response-and-forensics

326
star
99

mxboard

Logging MXNet data for visualization in TensorBoard.
Python
326
star
100

crossplane-on-eks

Crossplane bespoke composition blueprints for AWS resources
HCL
319
star