Victor Grenu
LightNews LightNews
banner
zoph.me
Victor Grenu
@zoph.me
820 followers 220 following 290 posts
Just another cloud consultant.
Posts Media Videos Starter Packs
zoph.me
Victor Grenu @zoph.me · 23d
Link: mamip.zoph.io
zoph.me
Victor Grenu @zoph.me · 23d
I've put a focus on brand new policies shipped by AWS (VersionId = "v1").
zoph.me
Victor Grenu @zoph.me · 23d
Just shipped a compagnon website for MAMIP, the tool that detects change made by AWS on IAM Managed Policy.

Let me know what do you think of this first version. I'm considering adding many new features in the next upcoming weeks.
2 1 6
zoph.me
Victor Grenu @zoph.me · Sep 15
Check out the full schedule here: fwdcloudsec.org/conference/...

Not in Berlin? No worries, you can join us live on YouTube: www.youtube.com/live/-a9Ts7...

It's going to be a packed day of sharp insights and real-world lessons for cloud security l33ts.
fwd:cloudsec Europe 2025 - Day 1
Full schedule: https://fwdcloudsec.org/conference/north-america/schedule.htmlJoin the conversation on Slack: https://fwdcloudsec.org/forum/
www.youtube.com
2 2
zoph.me
Victor Grenu @zoph.me · Sep 15
Just 2 hours to go before fwd:cloudsec Europe kicks off here in Berlin! 🇩🇪

We’ve got an incredible lineup of speakers this year covering the latest in cloud security, from IAM and supply chain risks to practical defense strategies.
1 1
zoph.me
Victor Grenu @zoph.me · Aug 18
Next move: Found a budget running watch. Any recommendations?

Keep moving, folks! 🏃

Links in the first comment.
zoph.me
Victor Grenu @zoph.me · Aug 18
- Statistics for Strava, a self-hosted (On Synology) container with tons of stats, dashboards, everything well presented, and Private. (See screenshots)
- As a previous NRC (Nike Running Club) user, I wanted to import my history of runs since 2011, and found on Reddit the perfect tool: Claim-NRC.
1
zoph.me
Victor Grenu @zoph.me · Aug 18
Since January, I've resumed running. It's part of my New Year's resolution: new gear and a more challenging routine after a seven-year pause and passing the 40-year milestone.

I'm now using Strava only to record my activities, and I've found a few cool FOSS initiatives that are game changers.
1 1
zoph.me
Victor Grenu @zoph.me · Aug 7
The lineup for fwd:cloudsec Europe is revealed, presenting a two-day event filled with top-tier presentations on a single track, alongside engaging "Birds of a Feather" discussion sessions. Sponsorship slots remain open.

fwdcloudsec.org/conference/...

See you there, folks! 🇩🇪
fwd:cloudsec Europe 2025 | fwd:cloudsec
fwd:cloudsec is a non-profit conference on cloud security. At this conference you can expect discussions about all the major cloud platforms, both attack and defense research, limitations of security features, the pros and cons of different security strategies, and generally the types of things cloud practitioners want to know, but that don't fit neatly into a vendor conference schedule.
fwdcloudsec.org
1 2
zoph.me
Victor Grenu @zoph.me · Aug 4
We need an always-on wearable device for this "assistant" use case. It's most useful when your hands are occupied, like when driving or doing DIY tasks.

My most-used assistant: Perplexity voice mode. What's yours?
zoph.me
Victor Grenu @zoph.me · Aug 4
We all agree that Alexa, Siri, and Google aren't yet equipped to handle these cases, and, with the rise of LLM, these assistants seem even less intelligent.
1 1
zoph.me
Victor Grenu @zoph.me · Aug 4
We are living in a unique time where core software technology is ready, but the hardware or device component is lacking.

Several times a day, I use an LLM for work-related questions, and at home, I often rely on voice interaction for personal queries.
1 1
zoph.me
Victor Grenu @zoph.me · Jul 30
Sometimes, stats are very painful to read.

You're sharing engaging content and OSS AWS projects, yet your blog's most popular post is an eight-year-old paper on interacting with the JIRA API using PowerShell.

Rude.
4
zoph.me
Victor Grenu @zoph.me · Jul 25
All this hard work, simplicity, redundancy, and integrity come at a cost.

Focus your effort on the business value of your product/service, rather than on building everything yourself.

Which OSS surprises you most?
zoph.me
Victor Grenu @zoph.me · Jul 25
Glacier → Tape Libraries (LTO)
AWS Hyperplane → FreeBSD-based
Lambda/Fargate → Firecracker (fork of Google's crosvm)

Most used languages at AWS are (in this order): Java, C/C++, Rust, Go, then Python.
1 1 1
zoph.me
Victor Grenu @zoph.me · Jul 25
AWS is not magic; it's a compilation of hard work and simplicity, executed at scale.

Well known AWS services are in fact, heavily customized OSS.

ALB → NGINX
ELB → HAProxy
EC2 → Xen, KVM
DynamoDB → InnoDB
Deep Glacier → BD-R optical
CloudFront → was NGINX + Squid
1 5
Reposted by Victor Grenu
mamip.bsky.social
MAMIP @mamip.bsky.social · Jul 24
ReadOnlyAccess, SecurityAudit, SystemAdministrator ... https://github.com/z0ph/MAMIP/commit/fcfd41a1
1 2
zoph.me
Victor Grenu @zoph.me · Jul 23
Friend: Sold. Where do I sign up?

Me: See the first comment.
zoph.me
Victor Grenu @zoph.me · Jul 23
Me: Two-click connect with a ReadOnly IAM role. After that, it watches 24/7, ships a daily or weekly digest.

Friend: Any proof it saves cash?

Me: Early adopters trim 25-40 % in week one, reduce attack surface, and the carbon footprint drops too.
1
zoph.me
Victor Grenu @zoph.me · Jul 23
Me: It shows numbers in different places and services, not answers. unusd auto-maps your whole account (all regions), then pings you: “This instance costs $1.2 K/yr and barely works → kill or resize?”

Friend: Sounds handy. What’s the setup pain?
1
zoph.me
Victor Grenu @zoph.me · Jul 23
Me: Tons. 30-50 % of cloud spend is “zombie” gear: test EC2s left running, snapshots from 2019, beefy DBs loafing at 5 % CPU, NATGW with zero traffic.

Friend: Doesn’t AWS already show that?
1
zoph.me
Victor Grenu @zoph.me · Jul 23
Me: Just rolled out a new version of unusd dot cloud for “UN-USD” as in kicking unused dollars out of AWS.

Friend: Wait, people really leave money on the table?
1
zoph.me
Victor Grenu @zoph.me · Jul 23
MAMIP ?

github.com/zoph-io/MAMIP zoph-io/MAMIP: [MAMIP] Monitor AWS Managed IAM Policies Changes
GitHub - zoph-io/MAMIP: [MAMIP] Monitor AWS Managed IAM Policies Changes
[MAMIP] Monitor AWS Managed IAM Policies Changes . Contribute to zoph-io/MAMIP development by creating an account on GitHub.
github.com
zoph.me
Victor Grenu @zoph.me · Jul 21
Recently, I've added more details to commit messages for MAMIP in response to user feedback on GitHub.

You will now be able to see the policy version for each new AWS IAM Managed Policy detection.

I hope this Quality of Life improvement benefits other repository users.
zoph.me
Victor Grenu @zoph.me · Jul 17
This is how I see MCP (Model Context Protocol) nowadays: a way to supercharge your second brain (LLM) with specialized content

Neo learned to pilot a helicopter and master martial arts with "I Know Kung Fu"

Next, plug the MCP into your first brain. What's your first MCP choice?