Aws Nuke

aws-nuke is an AWS account cleanup tool that scans every resource in an AWS account and removes them, leaving the account clean for reuse or decommissioning. It enumerates all resource types by iterating through service APIs and paginating results, then deletes resources in parallel using goroutines while throttling against AWS API rate limits.

The tool applies a config-file-driven filter pipeline that lets users exclude or include specific resource types, protect individual resources by matching their identifiers, and define reusable filter presets that can be applied across multiple accounts. When a resource type lacks a native deletion implementation, aws-nuke falls back to the AWS Cloud Control API to broaden coverage. It also supports running inside a Docker container with mounted configuration and credentials for isolated execution.

The project provides a Dockerized execution wrapper and supports limiting deletion to specific resource types or excluding resource types from cleanup entirely.

Features

AWS Account Resource Deletions - Scans and removes every resource in an AWS account to reset it for reuse or decommissioning.

Cloud Resource Deletion Filters - Selectively excludes or includes specific resource types and identifiers during bulk AWS resource deletion.

Configurable Resource Filters - Applies configurable filter presets to protect or target specific resources during account-wide deletion.

Config-File-Driven Filter Pipelines - Ships a config-file-driven filter pipeline that applies exclusion and inclusion rules before resource deletion.

AWS Resource-Type Enumeration Scanners - Enumerates all AWS resource types by iterating through service APIs and paginating results for comprehensive discovery.

Cloud Control API Fallback Deletions - Provides a fallback deletion mechanism via the AWS Cloud Control API for resource types lacking native support.

Parallel Resource Deletion Engines - Implements a parallel deletion engine using goroutines with AWS API rate-limit throttling for accelerated cleanup.

AWS Account Cleanup Tools - Removes all resources from an AWS account to reset it for reuse or decommissioning.

Account Cleanup - Wipes all resources from an AWS account to reset it for reuse or decommissioning.

Resource Nukers - Scans and deletes every resource in an AWS account using configurable filters and exclusions.

Reusable Filter Definition - Defines common resource filters once and applies them across multiple AWS accounts to simplify configuration.

Resource Identifier Matching Protections - Protects critical resources from accidental deletion by matching their identifiers against configurable patterns.

Cloud Control API Cleaners - Provides a fallback deletion mechanism via the AWS Cloud Control API for unsupported resource types.

Cloud Control API Resource Deletions - Deletes AWS resources through the Cloud Control API for broader coverage beyond native deletion support.

Cloud Control API Resource Removals - Deletes AWS resources through the Cloud Control API for broader coverage beyond native deletion support.

Resource Protection - Prevents accidental deletion of critical resources by matching their identifiers against configurable patterns.

Resource Type Exclusion Filters - Allows users to exclude specific resource types from cleanup using flags or configuration file entries.

Resource Type Inclusion Filters - Limits deletion to only the resource types specified with a target flag, ignoring all others.

rebuy-deaws-nukeArchived

Features

Star history