The Liberra audit guide

Your AWS audit.
Three prompts.

Connect Liberra, ask these. That's the whole audit.

Inventory

"Show me everything running in my account."

Every resource, every region, every service. In one answer. EC2, RDS, S3, Lambda, load balancers, forgotten regions included.

Cost & Waste

"Give me a full cost report."

Spend ranked by service and resource. Idle instances, orphan volumes, unused IPs. Exact dollar amounts, not estimates.

Security

"Run a security audit."

Critical to low, ranked findings with the exact resource named. Open ports, public buckets, stale IAM keys. No noise.

Deep security scan

For a full security audit, go two steps.

The quick prompt catches the obvious. For every misconfiguration across your account, run the full scan first, then ask the AI to make sense of it.

Powered by Prowler · 570+ checks · Every AWS service

01

Run the security scan in Liberra

02

"I just ran the scan. Cut the noise and give me the results."

Cloud Memory

The longer you keep it connected, the smarter it gets.

Day one it reads your cloud. Over time it learns it.

Instant answersDay 1

Full account scan the moment you connect. Ask anything immediately.

What's running?

What's costing me?

Any security issues?

Tracking changesWeek 1

Liberra tracks what shifts: new resources, modified settings, cost spikes.

What changed this week?

Who modified this?

What's this connected to?

Deep contextMonth 1+

Knows your cloud's history. Questions that took hours answered in seconds.

Why did costs go up?

Is it safe to remove this?

Why does this still exist?

Your cloud stops being a collection of resources. It becomes understandable.

Without Liberra

Here's what you'd be doing instead.

01

Open Cost Explorer, find Services tab, sort by cost

02

Check data transfer line items for surprises

03

Find NAT Gateway cost by region

04

Check EC2 Reserved vs on-demand ratios

05

Filter EC2 for stopped instances, check EBS attached

06

EC2 → Volumes → filter "available" for orphan volumes

07

EC2 → Snapshots → sort by date, delete old ones

08

EC2 → Elastic IPs → find unassociated ones

09

RDS → check CloudWatch CPU for idle databases

10

EC2 → Load Balancers → check target group health

11

Security Groups → search for 0.0.0.0/0 inbound

12

S3 → look for orange "Public" badges on buckets

13

RDS → Publicly accessible column, check each one

14

IAM → every user → Security credentials → key age

15

IAM → Dashboard → root account MFA status

16

CloudTrail → Trails → check every region is logging

17

Switch region to eu-west-1, repeat everything above

18

Switch to ap-southeast-1, repeat everything above

19

Switch to ap-northeast-1, repeat everything above

20

AWS Organizations → any forgotten accounts?

21

Default VPC in each region. Any resources?

22

Lambda → sort by last invoked. Anything stale?

And that's just checking. You haven't fixed anything yet.

Free to start

Connect once. Ask anything.

Read-only. Nothing changes. Your entire AWS account, explained in plain English.

Run my free audit

Read-only · No credit card · Nothing changes until you say so