New AWS EKS clusters, by default, have a publicly-accessible endpoint. In this guide, we'll show you how to secure your EKS cluster by removing public access.
Starting in 2023, AWS launch configurations are no longer supporting newly-released EC2 instance types. In this guide, we'll show you how to migrate your launch configurations to launch templates.
Incorporating Spot Instances into your EC2 Auto Scaling strategy can help you significantly lower your costs. In this guide, we'll show how you can launch Spot Instances with your EC2 Auto Scaling group.
By default, launch templates will assign a public IP address to new instances. In this guide, we show how you can block public access by configuring your launch template settings.
If you have unused AWS secrets in your account, you are paying a monthly charge for no reason. In this guide, we'll show you how to detect and remove unused AWS secrets to lower your cloud costs.
You may have projects where you need to add outside collaborators to your GitHub repositories. In this guide, we'll show you how to add collaborators with the GitHub UI and the GitHub API.
Upgrading your GKE clusters is an important way to ensure that you have the most secure, efficient cluster possible. In this guide, we'll show you how to manually upgrade GKE clusters.
By enabling EBS-optimization, you can guarantee a certain level of performance between your EBS volumes and EC2 instances. In this guide, we'll show you how to find instances without it enabled so you can update them.
Publicly accessible S3 buckets could pose a security risk for your organization. In this guide, we'll show you how you can block public access at the bucket-level in AWS.
When autoscaling is enabled, your GKE cluster will be more responsive as workloads change and scale down to lower costs when it can. In this guide, we'll show you how to enable autoscaling.
Automatic key rotation in GCP is useful way to reduce your security risk. In this guide, we'll show you how to set up automation key rotation.
If there's a chance a key in your GCP account has become compromised, you'll want to manually rotate keys right away. In this guide, we'll show you the steps to rotating keys manually in GCP.
When you adjust user groups in one platform, how do you ensure those changes are reflected in other tools? In this post, we share how the team at Non-Fungible Labs went about solving this problem using Blink automations.
If you have more AWS login profiles than you need, those unused passwords could become a security liability. In this guide, we'll show you how to find and delete unused passwords in AWS.
If you have IAM roles in your AWS account that are not being used, they could be a security liability. In this guide, we'll show you how to find unused IAM roles and remove them.
It's a good security practice to regularly rotate the access keys for your Azure storage accounts. In this guide, we'll show you how to do it with the Azure portal and Azure CLI.
It's a good security practice to keep AWS access keys to a minimum. In this guide, we'll show you how to find unused access keys in AWS and remove them.
Rotating access keys is an important security practice to mitigate against compromised credentials. In this guide, we'll show you how to manually rotate access keys for IAM users in AWS.
Strong MFA settings are an important way to boost your organization's security posture. In this guide, we'll show you how to enable additional context to show up on all MFA notifications.
Backing up your Cloud SQL instances is an important practice to ensuring you don't lose data if something goes wrong. In this guide, we'll show you how to create manual and automatic Cloud SQL backups.
One way to strengthen your organization's security posture is by enabling MFA number matching for all Azure users. In this guide, we'll show you how to set it up for Microsoft Authenticator.
HashiCorp Terraform Cloud Run Tasks help you integrate external services into your IaC workflows. Now, you can trigger Blink automations with events from Terraform using run tasks.
If one of your AWS users loses their multi-factor authentication device, it's important to deactivate it right away. In this guide, we'll show you how to identify and remove lost MFA devices.
Labels in GitHub are a helpful way to organize and communicate the status of your pull requests. In this guide, we'll show you different ways to create labels and add them to your pull requests.
If you are running into issues with your NGINX Ingress controller, it could be due to one of several potential causes. In this guide, we'll walk you through the troubleshooting steps to identify your issue.
If you are using gp2 volumes in AWS, you could achieve 20% cost savings by switching over to newer gp3 volumes. In this guide, we'll show you how to make this change to lower your EBS costs.
If you have an issue with your Kubernetes cluster, and you have already checked your Pods and Service, the issue might be the Ingress. In this guide, we'll show you how to troubleshoot at the Ingress level.
Are you running non-production EKS clusters on EC2 instances? In this guide, we'll show you how you can scale them down nightly to lower your cloud costs.
Tracking "AccessDenied" errors in your AWS account is a useful way to identify security threats and optimize your IAM permissions. In this guide, we'll show you how to get a list of these recent events.
Enhanced Monitoring lets you view real-time performance metrics and catch issues earlier. In this guide, we'll find any RDS instances that don't Enhanced Monitoring enabled and turn it on.
Copying EC2 instances from one region to another is one way to increase resilience in case of a resource failure. In this guide, we'll walk through how to copy an EC2 instance from one region to another.
Snapshots in GCP are an important tool for backing up data and ensuring resilience. In this guide, we outline the steps for creating snapshots and snapshot schedules for GCP disks.
If you are running non-production AKS clusters, you might not need them operating 24 hours per day. In this guide, we'll show you how to stop your clusters at night and restart them in the morning to lower your Azure costs.
Cleaning up old EBS snapshots is a good way of reducing clutter and lowering your storage costs. In this guide, we'll show you how to find certain EBS snapshots and delete them.
If you have unused Azure virtual network gateways, it's important to remove them to lower your cloud costs. In this guide, we'll show you how to find and remove them.
Before you install Helm Charts on your Kubernetes clusters, you should make sure that the chart has been checked for quality and security gaps. In this guide, we talk through how to set up an approval process for Helm Charts.
If you have Azure snapshots in your account that are outdated, you can clean them up to lower your monthly cloud costs. In this guide, we'll show you how to find and delete these snapshots.
If your organization is using VMware Workspace ONE for device management, you need to validate that all active users in your organization have it installed. Here are the steps to do that using Okta.
If you have GCP snapshots you no longer need, removing them is a great way to lower your cloud costs. Here's a guide on how to find and remove old GCP snapshots.
If your EC2 instances are averaging a low max CPU utilization, you may be able to save costs by resizing them. Here are the steps to finding and resizing low CPU usage EC2 instances.
If you have long running Amazon EC2 instances, you may want to consider applying Reserved Instances to lower your cloud costs. Here are the steps.
The costs for long running GCP Instances can be high. In this guide, we show you how to find long running instances and apply committed use discounts to lower your cloud costs.
One way to optimize your Azure cloud costs is by finding long running Azure VMs and utilizing Reserved Instances instead. In this guide, we'll show you how.
For each Azure public IP address your organization uses, there is a small hourly cost. In this guide, we'll show you how to find and remove unused public IP addresses.
To perform routine maintenance and testing on an EC2 instance, you'll want to detach it from its Auto Scaling group and load balancer first. Here is how.
Unattached Elastic IP Addresses can add extra costs to your monthly AWS bill. In this guide, we'll show you how to find and remove unneeded Elastic IP addresses.
If you have non-production GKE clusters, you might be able to reduce your cloud costs by pausing them at night and restarting them the next morning. In this guide, we show you the steps to do it.
Monitoring your GCP instances is critical to ensuring that you are optimizing your cloud resources. If you have instances with consistently low CPU usage, you may be able to resize them and reduce your costs.
If your Azure Virtual Machines are operating at a low usage rate, you might be able to resize them and lower your cloud costs. Here are the steps for finding and resizing low CPU usage VMs.
Unattached external IP Addresses in GCP are a recurring charge on your monthly bill. Here's how you can find and remove them so you can lower your cloud costs.
JumpCloud helps ensure that all employees keep their devices secure and updated. In this guide, we'll show you how to find users in your Okta directory who have not installed JumpCloud yet on one of their devices.
In this guide, we'll show you how to run a compliance check to validate that your Google Workspace users have installed JumpCloud on at least one of their devices.
If you run into issues with your Kubernetes deployment, you might have a problem with your Service configuration. In this guide, we'll show you the steps to troubleshoot your Service.
If your team is using CrowdStrike Falcon for endpoint detection and response, you'll want to keep an up-to-date list of blocked hashes. In this guide, we'll show you how.
IAM policies are a critical aspect of managing access to your resources in Google Cloud. In this guide, we'll show how you can add and remove IAM policies using the Google Cloud CLI.
There are many ways to use the Google Cloud CLI tool to script common activities. In this guide, we show how to assign roles to a new user and add them to a group.
Non-active users in your Azure account might be costing your organization money and introducing security risks. In this guide, we'll show you how to find and delete non-active users.
Many organizations have a security requirement that user passwords must expire and be changed after a certain period. Here is how you can find Azure users with non-compliant password settings.
Policies are an important aspect of managing your Azure cloud and governing your resources intelligently. In this guide, we'll show how you can use the Azure CLI to make quick updates to policies.
Orphaned resources like ConfigMaps can add clutter to your Kubernetes cluster. In this post, we'll show you how to find and remove unused ConfigMaps using kubectl commands.
Orphaned Secrets can be a security liability and waste memory and storage in your cluster. In this guide, we'll show you how to locate and delete orphaned Secrets using kubectl commands.
The Azure CLI is a great tool for scripting updates to user permissions. In this guide, we'll walk through the basics of roles and groups and the common commands.
This hands-on article documents my experience building a Slack integration application. You can use this post as a general how-to guide for building a similar Slack application.
If you are using Amazon DynamoDB, stale data might be costing your organization money. In this post, we'll explain how to find and handle stale data.
At Blink, we needed a solution for running Pods on EKS cluster in full isolation, not just for the network, but for system calls as well. This blog post describes how we used gVisor to create a solution.
If your log groups don't have the right rules in place, you could be paying unnecessary storage costs. In this guide, we'll show how you can find and fix AWS CloudWatch log groups without retention policies.
Is your organization following the best practices when it comes to Kubernetes? In this post, we'll outline security practices that can keep your clusters safe.
AWS load balancers with no targets might quietly be costing your organization money. In this guide, we'll show you how to find and delete unused load balancers.
Redundant trails can inflate how much your organization has to spend for AWS CloudTrail. In this post, we'll show you how to find and remove unneeded trails.
To avoid unexpected interruptions, it's a good practice to check to see if you have any EC2 instances scheduled to retire. Here are the steps for locating and handling these EC2 instances.
To avoid unexpected delays and performance issues, it's important to track the size of your repos. In this post, we'll share how the open-source tool Git Sizer can help.
S3 encryption is critical for keeping your data safe. In this guide, we'll show you how to check and implement S3 encryption best practices.
Kubernetes is smart enough to orchestrate containers and Pods, but only if it's healthy enough to run as intended — and that's where a Kubernetes global health checklist comes into play.
If you're using Amazon RDS, you need to ensure that RDS instances and RDS snapshots are both not publicly accessible. In this guide, we'll show you how to secure your RDS snapshots.
Are your Amazon RDS instances vulnerable? In this post, we show you how to check that your RDS instances are not publicly available and vulnerable.
If you don't regularly find and remove unattached disks, your organization may spend more than you need to on Azure resources. Here is how you can run these checks with the Azure CLI.
Mandatory tags can be a good way to standardize how your organization creates and labels resources. This post looks at how you can check the tags on your AWS resources.
In this post, we walk through how you can use your load balancer to set a rule for redirecting HTTP traffic to HTTPS.
If you receive the "RunContainerError" message when working with Kubernetes, here are the steps you should take to remedy your deployment.
To get the most out of tags and labels in Azure, your organization will need to align on a standard and enforceable best practice. Here is how you can enforce certain tags in Azure.
If you’re working within the Google Cloud Platform (GCP), locating and deleting unattached GCP disks is a critical to controlling costs and bolstering security. In this post, we'll walk through each step you can take to clean up wasteful resources.
Depending on the size of your organization, updating permissions and managing groups in AWS can be complex and time-intensive. In this post, we'll walk through how you can make updates using the AWS CLI tool.
Labels and tags are the best way to organize and track your GCP resources. In this post, we'll outline the common ways to create tags and ensure tagging compliance.
If your pods are stuck in pending state, you may need to do some quick troubleshooting. Here are the steps to follow to get your Pods back up and running.
If your company is growing, adding a new user to your AWS account can be a common tasks. In this post, we'll show you the CLI steps for adding a new user so you can start to automate this process.
If you encounter a Pod in a "CrashLoopBackOff" state, you can start troubleshooting by running a few different commands. In this post, we walk through each step.
If you have configured EC2 instances in a private subnet, you might need to do some troubleshooting to make sure that you can receive updates or access other AWS resources. Here are the steps to work through.
Managing your AWS resources is critical to making sure that you aren't wasting money. Here are the steps you can take to ensure that your team is keeping costs down.
The "ImagePullBackOff" error is one of the most common issues you might run into with your Kubernetes deployment. In this post, we'll walk through the steps you should take to manually troubleshoot your problem.
Start transforming your cloud and security operations with Blink.
.svg)