Complete AWS visibility,without console access.
Odus Cloud, our sister company in cloud infrastructure, needed answers about costs, servers, security, and backups without handing out AWS Console access. We built a fully serverless dashboard that brings AWS, GridPane, Cloudflare, and GitHub into a single pane, and it runs for about $5.50 a month.
Four logins,no single view.
The AWS Console is powerful, but it demands expertise to navigate. Operations staff and non-technical stakeholders at Odus Cloud struggled to get quick answers about costs, resource utilisation, and security status: a simple question like what was spent last month meant multiple clicks and a generated report.
Beyond AWS, the estate spread across GridPane for WordPress hosting, Cloudflare for DNS and CDN, and GitHub for code. Each meant a separate login and a different interface, with security scan results buried in server logs and backup gaps going unnoticed until a recovery was needed.
Deep AWS expertise needed for simple questions. Cost queries took multiple clicks and report generation every time.
Resources spread across AWS, GridPane, Cloudflare, and GitHub, with no single view of overall system health.
Malware scan results buried in server logs. Checking security status meant SSH into each server by hand.
GitHub repositories had no backup verification, and GridPane backup gaps surfaced only when a recovery was needed.
One dashboard,four platforms.
A completely serverless build. CloudFront serves the static frontend, API Gateway routes 17 endpoints to dedicated Python Lambdas that query AWS services and external APIs in parallel, and EventBridge drives the scheduled work. Data flows in from Cost Explorer, Lightsail, EC2, WorkMail, IAM, S3, and DynamoDB, cross-referenced with the GridPane and Cloudflare APIs.
Six months of AWS cost history with service-level breakdown and trend analysis, so spend questions never need a console login.
Instance health and snapshot tracking across all four regions, with utilisation analysis that surfaces server consolidation opportunities.
Server and site data for the 17-server WordPress estate, with backup gap analysis that flags sites missing recent backups before a recovery is needed.
EventBridge triggers daily Maldet and ClamAV scans across six Lightsail servers via SSM Run Command, with results aggregated into one security view.
Nightly incremental backups of 2,400+ repositories across 85 organisations, with deduplication and compression keeping storage costs down.
Cloudflare zones correlated against GridPane sites automatically, surfacing orphaned and misconfigured DNS that would otherwise go unnoticed.
Answers in seconds,not minutes.
Every infrastructure question now has an answer on one page, and the whole system costs less per month than a cup of coffee.
Six weeks,six phases.
From resource mapping to production, one phase per week.
Discovery and planning
Mapped every AWS resource across the four Lightsail regions and identified the integration points with GridPane and Cloudflare.
Core infrastructure
Stood up the Lambda functions, API Gateway, and S3 hosting, with authentication and CORS configuration.
AWS integration
Built the endpoints for Cost Explorer, Lightsail inventory, WorkMail, IAM audit, and S3 bucket analysis.
External integrations
Integrated the GridPane API for server and site data and the Cloudflare API for zone management, then wired up the DNS cross-referencing.
Security and backups
Deployed SSM agents, configured the EventBridge rules, set up Maldet and ClamAV scanning, and built the GitHub backup automation.
Frontend and launch
Built the responsive dashboard UI, deployed it behind CloudFront, and configured monitoring and alerting.
What it runs on.
Monitoring 17 servers and 226+ sites without direct AWS console access sounds impossible. BearPlex built the visibility layer we needed: unified security alerts, resource monitoring, and cost attribution, while maintaining the strict access boundaries our audit requirements demanded.