SpendLens — AWS cost forensics MVP

AWS cost forensics for engineering teams.

Turn neglected AWS bills into concrete remediation pull requests, weekly digests, and anomaly alerts at developer-tool pricing. Built for startups spending $5k–$50k/month on AWS.

Connect an AWS account →

AWS-only

focused on startup cloud bills

$5k–$50k

target monthly AWS spend

Read-only

no infrastructure mutation

scan · productioneu-west-1

scan ec2 inventory collected

scan ebs waste detectors running

scan nat traffic patterns checked

scan s3 lifecycle signals reviewed

scan rds rightsizing checks queued

findings pipeline

CUR + inventory

read-only analysis, report artifacts

EC2Idle production fleethigh

resource metadata · utilization signal · estimated savings

Evidence, severity, and remediation notes stay attached to each finding.

Needs review

Built for engineering teams that needAWS cost forensicsRead-only onboardingCUR 2.0 analysisEngineering-ready fixes

SPENDLENS WORKFLOW

Your AWS bill, demystified — and packaged for engineering review.

SpendLens uses a cross-account IAM role and customer-owned CUR export to analyze AWS spend and inventory. It surfaces severity-scored findings and ships AWS CLI or Terraform remediation guidance for customer review. It never moves money — and never assumes ownership of your resources.

app.probackend.com/spendlens/reportsread-only

By service

EC2EC2analyzed

S3S3analyzed

NATNAT GWanalyzed

RDSRDSanalyzed

λLambdaanalyzed

Spend signals & findings

— spend trend --- remediation impact

Savings evidence attachedSeverity-scored findings

Top finding

Unattached EBS volumes

Detached volume evidence, age, and size are recorded from read-only inventory.

# remediation draft aws ec2 delete-volume \ --volume-id <volume-id>

Remediation ready

What every plan ships with

CONNECT

One IAM role. Read-only by default.

Deploy the onboarding CloudFormation template from the app. SpendLens never asks for keys, never assumes ownership, and never moves money.

# CloudFormation from onboarding aws cloudformation create-stack \ --stack-name spendlens-readonly \ --template-body file://customer-onboarding.yaml \ --parameters ExternalId=generated-by-app

SCAN

Scheduled + on-demand

Run a first scan after onboarding, then schedule nightly scans as worker-backed persistence comes online.

FIX

CLI · Terraform · UI

Generate precise AWS CLI notes, Terraform guidance, or pull-request-ready remediation text for engineers to review.

aws cliterraformcdkmanual

EVIDENCE

Audit trail for every fix

Each finding carries resource context, estimated savings, and the evidence needed to decide whether to fix it.

ROLES

Owner/admin access

Customer dashboards are protected so only authorized workspace owners and admins can operate scans.

COMPLIANCE

Clear data boundary

Customer access is read-only. CUR exports stay customer-owned, and remediation remains a draft until the customer applies it.

Plug it in. See the bill.
Fix what's loud.

Connect a read-only AWS role, verify CUR metadata, and start turning billing noise into engineering action.

Connect an AWS account