In [2]:
import boto3


def list_ec2_instances():
    ec2 = boto3.client("ec2")
    instances = ec2.describe_instances()
    for reservation in instances["Reservations"]:
        for instance in reservation["Instances"]:
            print(f"EC2 Instance ID: {instance['InstanceId']}")


def list_iam_roles():
    iam = boto3.client("iam")
    roles = iam.list_roles()
    for role in roles["Roles"]:
        print(f"IAM Role Name: {role['RoleName']}")


# 列出所有帳戶內的自定義 IAM 政策
def list_iam_policies():
    iam = boto3.client("iam")
    policies = iam.list_policies(Scope="Local")
    for policy in policies["Policies"]:
        print(f"IAM Policy Name: {policy['PolicyName']}")


def list_s3_buckets():
    s3 = boto3.client("s3")
    buckets = s3.list_buckets()
    for bucket in buckets["Buckets"]:
        print(f"S3 Bucket Name: {bucket['Name']}")


# EB 的應用
def list_elastic_beanstalk_applications():
    eb = boto3.client("elasticbeanstalk")
    applications = eb.describe_applications()
    for app in applications["Applications"]:
        print(f"Elastic Beanstalk Application Name: {app['ApplicationName']}")


def list_elastic_beanstalk_environments():
    eb = boto3.client("elasticbeanstalk")
    environments = eb.describe_environments()
    for env in environments["Environments"]:
        print(f"Elastic Beanstalk Environment Name: {env['EnvironmentName']}")


def list_vpcs():
    ec2 = boto3.client("ec2")
    vpcs = ec2.describe_vpcs()
    for vpc in vpcs["Vpcs"]:
        print(f"VPC ID: {vpc['VpcId']}")


def list_rds_instances():
    rds = boto3.client("rds")
    instances = rds.describe_db_instances()
    for instance in instances["DBInstances"]:
        print(f"RDS Instance ID: {instance['DBInstanceIdentifier']}")


def list_cloudformation_stacks():
    cf = boto3.client("cloudformation")
    stacks = cf.describe_stacks()
    for stack in stacks["Stacks"]:
        print(f"CloudFormation Stack Name: {stack['StackName']}")


def list_lambda_functions():
    lambda_client = boto3.client("lambda")
    functions = lambda_client.list_functions()
    for function in functions["Functions"]:
        print(f"Lambda Function Name: {function['FunctionName']}")


# 檢查 RDS 快照和備份
def list_rds_snapshots():
    rds = boto3.client("rds")
    snapshots = rds.describe_db_snapshots()
    for snapshot in snapshots["DBSnapshots"]:
        print(f"RDS Snapshot ID: {snapshot['DBSnapshotIdentifier']}")


def list_rds_automated_backups():
    rds = boto3.client("rds")
    backups = rds.describe_db_instances()
    for backup in backups["DBInstances"]:
        print(f"RDS Automated Backup ID: {backup['DBInstanceIdentifier']}")


def main():
    print("Listing EC2 Instances:")
    list_ec2_instances()

    print("\nListing IAM Roles:")
    list_iam_roles()

    print("\nListing IAM Policies:")
    list_iam_policies()

    print("\nListing S3 Buckets:")
    list_s3_buckets()

    print("\nEB 全部的應用：")
    list_elastic_beanstalk_applications()

    print("\nListing Elastic Beanstalk Environments:")
    list_elastic_beanstalk_environments()

    print("\nListing VPCs:")
    list_vpcs()

    print("\nListing RDS Instances:")
    list_rds_instances()

    print("\nListing CloudFormation Stacks:")
    list_cloudformation_stacks()

    print("\nListing Lambda Functions:")
    list_lambda_functions()

    # 在 main 函數中添加這些函數的調用
    print("\nListing RDS Snapshots:")
    list_rds_snapshots()

    print("\nListing RDS Automated Backups:")
    list_rds_automated_backups()


if __name__ == "__main__":
    main()

Listing EC2 Instances:

Listing IAM Roles:
IAM Role Name: AWSServiceRoleForAutoScaling
IAM Role Name: AWSServiceRoleForRDS
IAM Role Name: AWSServiceRoleForSupport
IAM Role Name: AWSServiceRoleForTrustedAdvisor

Listing IAM Policies:

Listing S3 Buckets:

EB 全部的應用：

Listing Elastic Beanstalk Environments:

Listing VPCs:

Listing RDS Instances:

Listing CloudFormation Stacks:

Listing Lambda Functions:

Listing RDS Snapshots:

Listing RDS Automated Backups:


### 刪除指定角色


In [5]:
import boto3
from botocore.exceptions import ClientError


def detach_policies(role_name):
    iam = boto3.client("iam")
    try:
        # 列出並分離所有附加的政策
        attached_policies = iam.list_attached_role_policies(RoleName=role_name)
        for policy in attached_policies["AttachedPolicies"]:
            iam.detach_role_policy(RoleName=role_name, PolicyArn=policy["PolicyArn"])
            print(f"Detached policy {policy['PolicyName']} from role {role_name}")
    except ClientError as e:
        print(f"Error detaching policies from role {role_name}: {e}")


def remove_instance_profiles(role_name):
    iam = boto3.client("iam")
    try:
        # 列出並從所有實例配置文件中移除角色
        instance_profiles = iam.list_instance_profiles_for_role(RoleName=role_name)
        for profile in instance_profiles["InstanceProfiles"]:
            iam.remove_role_from_instance_profile(
                InstanceProfileName=profile["InstanceProfileName"], RoleName=role_name
            )
            print(
                f"Removed role {role_name} from instance profile {profile['InstanceProfileName']}"
            )
    except ClientError as e:
        print(f"Error removing role {role_name} from instance profiles: {e}")


def delete_role(role_name):
    iam = boto3.client("iam")
    try:
        # 刪除角色
        iam.delete_role(RoleName=role_name)
        print(f"Deleted role {role_name}")
    except ClientError as e:
        print(f"Error deleting role {role_name}: {e}")


def main():
    roles_to_delete = ["MyRoleBeanstalk-01", "MyRoleECBeanstalk-02"]

    for role in roles_to_delete:
        detach_policies(role)
        remove_instance_profiles(role)
        delete_role(role)


if __name__ == "__main__":
    main()

Detached policy AWSElasticBeanstalkMulticontainerDocker from role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkEnhancedHealth from role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkWebTier from role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkWorkerTier from role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkService from role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy from role MyRoleBeanstalk-01
Deleted role MyRoleBeanstalk-01
Detached policy AWSElasticBeanstalkMulticontainerDocker from role MyRoleECBeanstalk-02
Detached policy AWSElasticBeanstalkWebTier from role MyRoleECBeanstalk-02
Detached policy AWSElasticBeanstalkWorkerTier from role MyRoleECBeanstalk-02
Detached policy AWSElasticBeanstalkManagedUpdatesCustomerRolePolicy from role MyRoleECBeanstalk-02
Removed role MyRoleECBeanstalk-02 from instance profile MyRoleECBeanstalk-02
Deleted role MyRoleECBeanstalk-02


### 刪除指定的 EC2


In [7]:
import boto3
from botocore.exceptions import ClientError


def terminate_instance(instance_id):
    ec2 = boto3.client("ec2")
    try:
        ec2.terminate_instances(InstanceIds=[instance_id])
        print(f"Terminating EC2 Instance ID: {instance_id}")
    except ClientError as e:
        print(f"Error terminating instance {instance_id}: {e}")


def main():
    instance_id = "i-0281a7c4983991411"
    terminate_instance(instance_id)


if __name__ == "__main__":
    main()

Terminating EC2 Instance ID: i-0281a7c4983991411


### 刪除一個 S3 Bucket


In [3]:
import boto3
from botocore.exceptions import ClientError
import json


def update_bucket_policy(bucket_name):
    s3 = boto3.client("s3")

    bucket_policy = {
        "Version": "2012-10-17",
        "Statement": [
            {
                "Effect": "Allow",
                "Principal": "*",
                "Action": "s3:*",
                "Resource": [
                    f"arn:aws:s3:::{bucket_name}",
                    f"arn:aws:s3:::{bucket_name}/*",
                ],
            }
        ],
    }

    bucket_policy = json.dumps(bucket_policy)

    try:
        s3.put_bucket_policy(Bucket=bucket_name, Policy=bucket_policy)
        print(f"Updated policy for bucket {bucket_name}")
    except ClientError as e:
        print(f"Error updating policy for bucket {bucket_name}: {e}")


def empty_bucket(bucket_name):
    s3 = boto3.resource("s3")
    bucket = s3.Bucket(bucket_name)

    try:
        # 刪除Bucket中的所有對象
        bucket.objects.delete()
        # 刪除Bucket中的所有版本（如果啟用了版本控制）
        bucket.object_versions.delete()
        print(f"Emptied bucket {bucket_name}")
    except ClientError as e:
        print(f"Error emptying bucket {bucket_name}: {e}")


def delete_bucket(bucket_name):
    s3 = boto3.client("s3")

    try:
        # 刪除空的Bucket
        s3.delete_bucket(Bucket=bucket_name)
        print(f"Deleted bucket {bucket_name}")
    except ClientError as e:
        print(f"Error deleting bucket {bucket_name}: {e}")


def main():
    bucket_name = "elasticbeanstalk-us-east-1-730335644197"

    # 更新Bucket政策
    update_bucket_policy(bucket_name)

    # 先清空Bucket
    empty_bucket(bucket_name)

    # 然後刪除Bucket
    delete_bucket(bucket_name)


if __name__ == "__main__":
    main()

Updated policy for bucket elasticbeanstalk-us-east-1-730335644197
Emptied bucket elasticbeanstalk-us-east-1-730335644197
Deleted bucket elasticbeanstalk-us-east-1-730335644197


### 刪除指定的環境


In [9]:
import boto3
from botocore.exceptions import ClientError


def terminate_eb_environment(env_name):
    eb = boto3.client("elasticbeanstalk")
    try:
        response = eb.terminate_environment(EnvironmentName=env_name)
        print(f"Terminating Elastic Beanstalk Environment: {env_name}")
        return response
    except ClientError as e:
        print(f"Error terminating environment {env_name}: {e}")


def main():
    environment_name = "Ex0720-env"
    terminate_eb_environment(environment_name)


if __name__ == "__main__":
    main()

Error terminating environment Ex0720-env: An error occurred (InvalidParameterValue) when calling the TerminateEnvironment operation: No Environment found for EnvironmentName = 'Ex0720-env'.


### 刪除指定 VPC


In [16]:
import boto3
from botocore.exceptions import ClientError


def delete_vpc(vpc_id):
    ec2 = boto3.client("ec2")

    try:
        # 刪除 VPC 中的所有子網
        subnets = ec2.describe_subnets(Filters=[{"Name": "vpc-id", "Values": [vpc_id]}])
        for subnet in subnets["Subnets"]:
            ec2.delete_subnet(SubnetId=subnet["SubnetId"])
            print(f"Deleted subnet {subnet['SubnetId']}")

        # 刪除 VPC 中的所有路由表（忽略 main 路由表）
        route_tables = ec2.describe_route_tables(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for route_table in route_tables["RouteTables"]:
            main_association = False
            for association in route_table["Associations"]:
                if association["Main"]:
                    main_association = True
                    break
            if not main_association:
                ec2.delete_route_table(RouteTableId=route_table["RouteTableId"])
                print(f"Deleted route table {route_table['RouteTableId']}")

        # 刪除 VPC 中的所有 Internet Gateways
        igws = ec2.describe_internet_gateways(
            Filters=[{"Name": "attachment.vpc-id", "Values": [vpc_id]}]
        )
        for igw in igws["InternetGateways"]:
            ec2.detach_internet_gateway(
                InternetGatewayId=igw["InternetGatewayId"], VpcId=vpc_id
            )
            ec2.delete_internet_gateway(InternetGatewayId=igw["InternetGatewayId"])
            print(f"Deleted internet gateway {igw['InternetGatewayId']}")

        # 刪除 VPC 中的所有 NAT Gateways
        nat_gateways = ec2.describe_nat_gateways(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for nat_gateway in nat_gateways["NatGateways"]:
            ec2.delete_nat_gateway(NatGatewayId=nat_gateway["NatGatewayId"])
            print(f"Deleted NAT gateway {nat_gateway['NatGatewayId']}")

        # 刪除 VPC 中的所有 Network ACLs（忽略 default NACL）
        network_acls = ec2.describe_network_acls(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for acl in network_acls["NetworkAcls"]:
            if not acl["IsDefault"]:
                ec2.delete_network_acl(NetworkAclId=acl["NetworkAclId"])
                print(f"Deleted network ACL {acl['NetworkAclId']}")

        # 刪除 VPC 中的所有 Security Groups（忽略 default 安全組）
        security_groups = ec2.describe_security_groups(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for sg in security_groups["SecurityGroups"]:
            if sg["GroupName"] != "default":
                ec2.delete_security_group(GroupId=sg["GroupId"])
                print(f"Deleted security group {sg['GroupId']}")

        # 刪除 VPC 中的所有網絡接口
        network_interfaces = ec2.describe_network_interfaces(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for ni in network_interfaces["NetworkInterfaces"]:
            ec2.delete_network_interface(NetworkInterfaceId=ni["NetworkInterfaceId"])
            print(f"Deleted network interface {ni['NetworkInterfaceId']}")

        # 刪除 VPC 中的所有端點
        endpoints = ec2.describe_vpc_endpoints(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for endpoint in endpoints["VpcEndpoints"]:
            ec2.delete_vpc_endpoints(VpcEndpointIds=[endpoint["VpcEndpointId"]])
            print(f"Deleted VPC endpoint {endpoint['VpcEndpointId']}")

        # 刪除 VPC 中的所有對等連接
        peering_connections = ec2.describe_vpc_peering_connections(
            Filters=[{"Name": "requester-vpc-info.vpc-id", "Values": [vpc_id]}]
        )
        for pcx in peering_connections["VpcPeeringConnections"]:
            ec2.delete_vpc_peering_connection(
                VpcPeeringConnectionId=pcx["VpcPeeringConnectionId"]
            )
            print(f"Deleted VPC peering connection {pcx['VpcPeeringConnectionId']}")

        # 刪除 VPC 中的所有 VPN 連接
        vpn_connections = ec2.describe_vpn_connections(
            Filters=[{"Name": "vpc-id", "Values": [vpc_id]}]
        )
        for vpn in vpn_connections["VpnConnections"]:
            ec2.delete_vpn_connection(VpnConnectionId=vpn["VpnConnectionId"])
            print(f"Deleted VPN connection {vpn['VpnConnectionId']}")

        # 刪除 VPC
        ec2.delete_vpc(VpcId=vpc_id)
        print(f"Deleted VPC {vpc_id}")

    except ClientError as e:
        print(f"Error deleting VPC {vpc_id}: {e}")


def main():
    vpc_id = "vpc-0d9d097a84e10a43e"
    delete_vpc(vpc_id)


if __name__ == "__main__":
    main()

Deleted VPC endpoint vpce-0e6bd0b389415489d
Deleted VPC vpc-0d9d097a84e10a43e
