Skip to content

Instantly share code, notes, and snippets.

View RajChowdhury240's full-sized avatar
πŸ’»
just another learner

Raj Chowdhury RajChowdhury240

πŸ’»
just another learner
342 followers · 404 following
  • Confidential
  • $ aws sts get-caller-identity
  • 13:09 (UTC +11:00)
View GitHub Profile
@RajChowdhury240
RajChowdhury240 / index.html
Created March 6, 2026 16:51
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Nexus Dashboard</title>
<link rel="preconnect" href="https://fonts.googleapis.com">
<link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
<link href="https://fonts.googleapis.com/css2?family=Syne:wght@400;500;600;700;800&family=Manrope:wght@300;400;500;600;700&family=JetBrains+Mono:wght@400;500;600&display=swap" rel="stylesheet">
<script src="https://unpkg.com/vue@3/dist/vue.global.prod.js"></script>
@RajChowdhury240
RajChowdhury240 / best-practice.md
Created March 5, 2026 17:51

AWS Centralized Root Account Management β€” Security Deep Dive

What It Is

AWS Centralized Root Access Management (released re:Invent 2024) allows the management account (or a delegated admin) in AWS Organizations to:

  1. Perform privileged root-only actions on member accounts via sts:AssumeRoot β€” without needing root credentials for those accounts.
  2. Remove root credentials (password, MFA, signing certs, access keys) from member accounts entirely.

Once enabled, root sessions are obtained programmatically through STS, scoped to specific task policies, and are short-lived.

@RajChowdhury240
RajChowdhury240 / text.txt
Created March 4, 2026 06:07
Now I have a great understanding of MINESET's aesthetic. Let me analyze what I
see:
1. Velvet burgundy top with gold trim + shimmer palazzo pants - luxe, festive
Indian fusion
2. Bright green one-shoulder ruffle dress - bold color, playful, trendy
3. Black ribbed top + cream knit skirt with knee-high boots - editorial,
moody, contemporary
4. Casual black tank + color-block wide-leg pants - relaxed, everyday
aesthetic
@RajChowdhury240
RajChowdhury240 / mcp.txt
Created March 3, 2026 07:46
https://excalidraw.com/#json=RGm9NE9VuUL5AlQ4TMMwT,ollk3g7Agum2b2B4btHw3A
@RajChowdhury240
RajChowdhury240 / research.md
Created February 28, 2026 03:31

Agentic AI: The Next Paradigm Shift in Enterprise Security

Multi-Agent Systems for End-to-End Security Hardening at Scale

Author: Raj Date: February 2026 Keywords: Agentic AI, Multi-Agent Systems, Enterprise Security, SOC Automation, SAST, DAST, DevSecOps, Threat Detection, Vulnerability Management, Security Orchestration

@RajChowdhury240
RajChowdhury240 / gg.py
Created February 25, 2026 13:29
#!/usr/bin/env python3
"""
AWS Identity Center (SSO) Comprehensive Report Generator
Enumerates users, groups, memberships, permission sets, and account assignments.
Outputs a modern, interactive HTML dashboard.
"""
import boto3
import json
import html
@RajChowdhury240
RajChowdhury240 / dayum.md
Created February 24, 2026 18:43
image
@RajChowdhury240
RajChowdhury240 / fix.txt
Created February 24, 2026 07:40
The message flow is:
Remediation Lambdas β†’ SNS (encrypted with CMK) β†’ SQS β†’ Splunk
When you encrypt the SNS topic with a CMK, two things must happen that don't happen automatically:
1. Lambdas Publishing to SNS
The remediation Lambda execution roles need KMS permissions on the CMK to publish to the encrypted
topic:
@RajChowdhury240
RajChowdhury240 / demo.txt
Created February 24, 2026 07:33
https://excalidraw.com/#json=RP89MhOQaMcmCULpK9wcf,RlodORTAw8n60I407U3D_w
@RajChowdhury240
RajChowdhury240 / riced.md
Created February 20, 2026 16:27
image image image