Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS Cost and Usage Reports #118

Open
timoguin opened this issue Mar 17, 2023 · 0 comments
Open

AWS Cost and Usage Reports #118

timoguin opened this issue Mar 17, 2023 · 0 comments
Labels
enhancement New feature or request

Comments

@timoguin
Copy link
Contributor

timoguin commented Mar 17, 2023
edited
Loading

I'd like to ingest AWS Cost and Usage Reports (used to be called detailed billing) from S3. They can be delivered in CSV or Parquet/ORC formats.

Considerations

This source would likely be a bit different than others because it might not make sense to normalize the data to ECS. That might make it a good candidate for testing support for ingesting columnar formats.

For a large org these can get pretty big. I think our daily reports are around 20-30GB (in CSV format).

CUR already has good support for exporting into formats that can be easily utilized with Athena, Redshift, and/or QuickSight.

They're not security logs per se, but they are still an important contextual data point, and a place where anomalies can be detected. We have alarms setup to detect when spending spikes for the day (compared to a 30-day rolling average). Usually this means configuration changes, but it could also detect things like crypto-mining attacks.

References
@timoguin timoguin added the enhancement New feature or request label Mar 23, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@timoguin