dynamodb

2017-06-30 00:19:04 -04:00
parent 470dd0fe83
commit 758d7e688e
2 changed files with 117 additions and 0 deletions
--- a/dynamodb_list_tables.py
+++ b/dynamodb_list_tables.py
@@ -0,0 +1,22 @@
+'''
+dynamoDB examples
+'''
+
+import boto3
+import botocore
+
+import json
+import urllib
+import logging
+import sys,os
+import pprint
+
+pp = pprint.PrettyPrinter(indent=5, width=80)
+
+from libs.dynamodb import *
+
+AWS_ACCESS_KEY_ID = ''
+AWS_SECRET_ACCESS_KEY = ''
+
+list_dynamodb_tables(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY)
+list_dynamodb_tables_detailed(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY)
--- a/libs/dynamodb.py
+++ b/libs/dynamodb.py
@@ -0,0 +1,95 @@
+'''
+dynamoDB functions
+'''
+
+import boto3
+import botocore
+import pprint
+import sys,os
+
+pp = pprint.PrettyPrinter(indent=5, width=80)
+
+#from http://docs.aws.amazon.com/general/latest/gr/rande.html
+regions = ['us-east-1', 'us-east-2', 'us-west-1', 'us-west-2', 'ca-central-1', 'eu-central-1', 'eu-west-1', 'eu-west-2', 'ap-northeast-1', 'ap-northeast-2', 'ap-southeast-1', 'ap-southeast-2',  ]
+
+def list_dynamodb_tables(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY):
+    print("### Printing DynamoDB Tables ###")
+    try:
+    	for region in regions:
+    		client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)
+
+        	response = client.list_tables()
+        	if response.get('TableNames') is None:
+        		print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
+        	elif len(response['TableNames']) <= 0:
+        		print "[-] ListTables allowed for {} but no results [-]" .format(region)
+        	else:
+        		print"### {} DynamoDB Tables ###" .format(region)
+        		for tables in response['TableNames']:
+        			pp.pprint(tables)
+        print("\n")
+        	
+    except botocore.exceptions.ClientError as e:
+        if e.response['Error']['Code'] == 'InvalidClientTokenId':
+            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
+        elif e.response['Error']['Code'] == 'AccessDenied':
+            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
+        else:
+            print "Unexpected error: {}" .format(e)
+
+def list_dynamodb_tables_detailed(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY):
+    print("### Printing DynamoDB Tables ###")
+    try:
+    	for region in regions:
+    		client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)
+
+        	response = client.list_tables()
+        	if response.get('TableNames') is None:
+        		print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
+        	elif len(response['TableNames']) <= 0:
+        		print "[-] ListTables allowed for {} but no results [-]" .format(region)
+        	else:
+        		print"### {} DynamoDB Tables ###" .format(region)
+        		for tables in response['TableNames']:
+        			#pp.pprint(tables)
+        			describe_table(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, tables, region)
+        print("\n")
+        	
+    except botocore.exceptions.ClientError as e:
+        if e.response['Error']['Code'] == 'InvalidClientTokenId':
+            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
+        elif e.response['Error']['Code'] == 'AccessDenied':
+            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
+        else:
+            print "Unexpected error: {}" .format(e)
+
+def describe_table(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, table, region):
+    print "### Describing DynamoDB Table: {} ###" .format(table)
+    try:
+    	client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)
+
+        response = client.describe_table(TableName=table)
+        if response.get('Table') is None:
+        	print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
+        elif len(response['Table']) <= 0:
+        	print "[-] DescribeTable allowed for {} but no results [-]" .format(region)
+        else:
+        	print "TableArn: {}" .format(response['Table']['TableArn'])
+        	print "AttributeDefinitions: {}" .format(response['Table']['AttributeDefinitions'])
+        	print "ProvisionedThroughput: {}" .format(response['Table']['ProvisionedThroughput'])
+        	print "TableSizeBytes: {}" .format(response['Table']['TableSizeBytes'])
+        	print "TableName: {}" .format(response['Table']['TableName'])
+        	print "TableStatus: {}" .format(response['Table']['TableStatus'])
+        	print "KeySchema: {}" .format(response['Table']['KeySchema'])
+        	print "ItemCount: {}" .format(response['Table']['ItemCount'])
+        	print "CreationDateTime: {}" .format(response['Table']['CreationDateTime'])
+        print("\n")
+        	
+    except botocore.exceptions.ClientError as e:
+        if e.response['Error']['Code'] == 'InvalidClientTokenId':
+            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
+        elif e.response['Error']['Code'] == 'AccessDenied':
+            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
+        else:
+            print "Unexpected error: {}" .format(e)
+