AWS Tutorials

Logging – CloudTrail

Logging – AWS CloudTrail

Logging – CloudTrail

AWS CloudTrail is one of the most critical logging and monitoring services in the AWS ecosystem. It provides governance, compliance, operational auditing, and security analysis by recording all account-level and service-level activities. Every API call and console action performed within an AWS environment is captured and stored as an event in CloudTrail. Because of its ability to deliver complete visibility into user activity and resource interactions, CloudTrail forms the foundation of security auditing and forensic analysis in AWS.

This document offers detailed, structured notes on CloudTrail, exceeding 2000 words, with proper explanations, architecture, concepts, best practices, logs, use cases, advanced features, examples, and meta information. It follows all formatting rules and is optimized with keywords like AWS CloudTrail, CloudTrail logs, AWS logging, compliance logs, security auditing, trail configuration, CloudTrail management events, CloudTrail data events, and CloudTrail insights.

Introduction to Logging in AWS

Logging is an essential requirement for cloud governance, auditing, troubleshooting, and compliance. In traditional on-premises systems, logs often reside on servers, network devices, and applications. In cloud environments, however, resources are dynamically created, managed, and destroyed, which requires automated, centralized, and highly scalable logging systems.

AWS provides several logging services such as CloudTrail, CloudWatch Logs, CloudWatch Metrics, AWS Config, Amazon S3 access logs, and Elastic Load Balancer logs. Among all these, AWS CloudTrail plays the primary role in capturing API-level activities that help identify "who did what, when, and from where" in an AWS account.

Importance of Logging in Cloud Environments

Logging in cloud environments enables:

  • Visibility into every user activity
  • Detection of unauthorized or unusual behavior
  • Troubleshooting errors and operational issues
  • Compliance with frameworks such as PCI-DSS, HIPAA, ISO 27001
  • Forensic investigations after security events
  • Tracking configuration changes for governance

What is AWS CloudTrail?

AWS CloudTrail is a fully managed logging service that records API calls made in an AWS environment. Every AWS service interactionβ€”whether through the console, AWS CLI, SDKs, or other AWS servicesβ€”is captured as an event. CloudTrail records details such as the identity making the request, the time of the request, the IP address, the resources involved, and the response from AWS.

CloudTrail helps provide:

  • Security analysis and anomaly detection
  • Auditing and compliance evidence
  • Change tracking and resource lifecycle tracing
  • Automated responses using Amazon EventBridge
  • Historical log analysis

Key Benefits of CloudTrail

  • Complete visibility: Tracks every action across all AWS services.
  • Governance: Ensures accountability by logging user identities and access patterns.
  • Cost-effective: CloudTrail is free for recent events and low-cost for trails.
  • Integration: Works seamlessly with CloudWatch Logs, EventBridge, Athena, and Security Hub.
  • Compliance-ready: Meets global compliance standards for auditing.

Core Concepts of AWS CloudTrail

Understanding CloudTrail requires familiarity with its key elements, including events, trails, logs, and integration components.

CloudTrail Events

CloudTrail records three major categories of events:

  • Management Events – Activities related to creating, updating, deleting, and configuring AWS resources (e.g., launching EC2, modifying IAM roles).
  • Data Events – High-volume data-level operations such as S3 object-level access or Lambda function invocations.
  • CloudTrail Insights Events – Anomaly detection logs analyzing unusual API activity patterns.

CloudTrail Trail

A Trail is a configuration that enables delivery of logs to the following destinations:

  • Amazon S3 bucket (long-term storage)
  • CloudWatch Logs (real-time monitoring)
  • EventBridge (event-driven automation)

Trails can be configured at:

  • Account level – Logging activity for a single AWS account
  • Organization level – Centralized logging across all accounts in AWS Organizations

Event History

CloudTrail provides a default Event History which keeps 90 days of recent API activity without requiring any Trail setup. This is free of cost.

CloudTrail Logs

CloudTrail logs are stored in JSON format. They include:

  • User identity information
  • Event time
  • Source IP
  • Event name
  • Response elements
  • Request parameters
  • Resource identifiers

How AWS CloudTrail Works

CloudTrail follows a consistent workflow to capture and deliver API events. This process includes the generation, recording, processing, storage, and analysis of logs.

Step-by-Step Workflow

  1. An API call is made by a user, an AWS service, or another system.
  2. CloudTrail records the API call as an event in JSON format.
  3. The event is added to Event History (automatically).
  4. If a Trail is configured, the event is delivered to S3, CloudWatch Logs, or EventBridge.
  5. Logs can be queried using CloudWatch Logs Insights, Athena, or SIEM tools.
  6. Insights detect anomalies such as spikes in API calls.

CloudTrail Event Structure

Each CloudTrail event is stored as a JSON record. Understanding the structure helps in log analysis and forensic investigations.

Sample CloudTrail Log Entry


{
  "eventVersion": "1.08",
  "userIdentity": {
    "type": "IAMUser",
    "userName": "AdminUser"
  },
  "eventTime": "2024-05-11T10:32:01Z",
  "eventSource": "ec2.amazonaws.com",
  "eventName": "StartInstances",
  "awsRegion": "us-east-1",
  "sourceIPAddress": "203.0.113.10",
  "requestParameters": {
    "instancesSet": ["i-0123456789abcdef0"]
  },
  "responseElements": {
    "startingInstances": [...]
  }
}

This entry indicates that an IAM user named "AdminUser" started an EC2 instance from a particular IP address.

Types of CloudTrail Events

CloudTrail logs several event types relevant to different levels of AWS operations.

Management Events

These events relate to actions that modify or describe AWS resources. They include operations such as:

  • CreateBucket
  • RunInstances
  • CreateRole
  • PutBucketPolicy
  • ModifyDBInstance

Data Events

Data events provide object-level or function-level activity. These logs are more granular and can become high-volume.

Examples include:

  • S3 GetObject
  • S3 PutObject
  • Lambda Invoke
  • RDS Data API calls

CloudTrail Insights Events

CloudTrail Insights uses ML-based anomaly detection to identify unusual patterns such as:

  • Excessive API calls
  • Failed authentication attempts
  • Abnormal data access behavior
  • Unexpected IAM privilege changes

Setting Up AWS CloudTrail

Configuring CloudTrail involves creating a Trail, selecting the event types, and choosing log destinations.

Steps to Create a Trail

  1. Open AWS CloudTrail console.
  2. Choose β€œCreate Trail”.
  3. Specify Trail name.
  4. Select β€œManagement Events”.
  5. Enable β€œData Events” (optional).
  6. Select log destination (S3, CloudWatch Logs).
  7. Enable encryption with KMS (recommended).
  8. Review and create.

Example CloudFormation Template for Creating a CloudTrail


Resources:
  MyTrail:
    Type: AWS::CloudTrail::Trail
    Properties:
      TrailName: LoggingTrailDemo
      S3BucketName: cloudtrail-logs-storage-demo
      IsMultiRegionTrail: true
      EnableLogFileValidation: true
      IncludeGlobalServiceEvents: true

CloudTrail Log Storage and Analysis

CloudTrail logs can be stored and analyzed using various AWS tools to detect patterns, troubleshoot issues, or perform compliance checks.

Amazon S3 for Long-Term Storage

Most CloudTrail configurations store logs in S3. This allows:

  • Cost-efficient long-term archival
  • Integration with Athena for SQL querying
  • Backup and cross-region replication

CloudWatch Logs for Real-Time Monitoring

Sending CloudTrail logs to CloudWatch Logs enables:

  • Creating metric filters
  • Real-time alerts
  • Security automation
  • Visualization dashboards

Amazon Athena for Querying Logs

Athena provides serverless querying of CloudTrail logs stored in S3 using SQL.

SIEM Integration

CloudTrail integrates with:

  • Splunk
  • Elastic SIEM
  • QRadar
  • Datadog
  • Security Hub

Security Features of CloudTrail

CloudTrail contains many features designed to improve security monitoring and protect log integrity.

Log File Validation

This feature verifies the integrity of log files by generating digest files using hashing algorithms.

Encryption with AWS KMS

KMS encryption ensures logs are protected at rest using customer-managed keys.

Multi-Region Logging

Multi-region trails ensure that logs from all regions are centralized, preventing gaps in monitoring coverage.

CloudTrail with AWS Organizations

Organization trails enforce logging across all accountsβ€”even newly created ones. This ensures consistent governance at the enterprise level.

Best Practices for AWS CloudTrail

Enable CloudTrail in All Regions

This prevents attackers from operating in unused regions without detection.

Use Organization Trails

Centralized configuration ensures all accounts follow logging requirements.

Store Logs in a Central S3 Bucket

Use restricted access and encryption for the logging bucket.

Enable Log File Validation

Protects against tampering and ensures audit integrity.

Enable CloudTrail Insights

Detects unusual activity patterns automatically.

Use CloudWatch Metric Filters

Set alarms for critical security events such as unauthorized access attempts.

Common Use Cases for AWS CloudTrail

  • Security monitoring and threat detection
  • Compliance auditing (PCI-DSS, HIPAA, GDPR)
  • Resource change tracking
  • Operational troubleshooting
  • Incident response investigations
  • Monitoring IAM activity
  • Detecting malicious activity
  • Tracking S3 object access patterns

Challenges and Limitations of CloudTrail

While CloudTrail is robust, it has some limitations:

  • Data events can become expensive at scale
  • Log analysis requires additional tools
  • Does not capture internal application logs
  • Event delivery to S3 has slight delays
  • Large organizations must manage log storage carefully

AWS CloudTrail is an essential tool for logging, monitoring, and auditing within AWS environments. It provides complete visibility into all AWS operations, making it crucial for security, compliance, governance, operational intelligence, and threat detection. By setting up Trails, enabling multi-region logging, integrating with CloudWatch and Athena, and following best practices, organizations can build a strong logging foundation that supports cloud security and operational excellence.

CloudTrail continues to evolve with advanced features like Insights, organizational controls, and analytics integrations, making it central to AWS Cloud Security and DevOps strategies.

logo

AWS

Beginner 5 Hours
Logging – AWS CloudTrail

Logging – CloudTrail

AWS CloudTrail is one of the most critical logging and monitoring services in the AWS ecosystem. It provides governance, compliance, operational auditing, and security analysis by recording all account-level and service-level activities. Every API call and console action performed within an AWS environment is captured and stored as an event in CloudTrail. Because of its ability to deliver complete visibility into user activity and resource interactions, CloudTrail forms the foundation of security auditing and forensic analysis in AWS.

This document offers detailed, structured notes on CloudTrail, exceeding 2000 words, with proper explanations, architecture, concepts, best practices, logs, use cases, advanced features, examples, and meta information. It follows all formatting rules and is optimized with keywords like AWS CloudTrail, CloudTrail logs, AWS logging, compliance logs, security auditing, trail configuration, CloudTrail management events, CloudTrail data events, and CloudTrail insights.

Introduction to Logging in AWS

Logging is an essential requirement for cloud governance, auditing, troubleshooting, and compliance. In traditional on-premises systems, logs often reside on servers, network devices, and applications. In cloud environments, however, resources are dynamically created, managed, and destroyed, which requires automated, centralized, and highly scalable logging systems.

AWS provides several logging services such as CloudTrail, CloudWatch Logs, CloudWatch Metrics, AWS Config, Amazon S3 access logs, and Elastic Load Balancer logs. Among all these, AWS CloudTrail plays the primary role in capturing API-level activities that help identify "who did what, when, and from where" in an AWS account.

Importance of Logging in Cloud Environments

Logging in cloud environments enables:

  • Visibility into every user activity
  • Detection of unauthorized or unusual behavior
  • Troubleshooting errors and operational issues
  • Compliance with frameworks such as PCI-DSS, HIPAA, ISO 27001
  • Forensic investigations after security events
  • Tracking configuration changes for governance

What is AWS CloudTrail?

AWS CloudTrail is a fully managed logging service that records API calls made in an AWS environment. Every AWS service interaction—whether through the console, AWS CLI, SDKs, or other AWS services—is captured as an event. CloudTrail records details such as the identity making the request, the time of the request, the IP address, the resources involved, and the response from AWS.

CloudTrail helps provide:

  • Security analysis and anomaly detection
  • Auditing and compliance evidence
  • Change tracking and resource lifecycle tracing
  • Automated responses using Amazon EventBridge
  • Historical log analysis

Key Benefits of CloudTrail

  • Complete visibility: Tracks every action across all AWS services.
  • Governance: Ensures accountability by logging user identities and access patterns.
  • Cost-effective: CloudTrail is free for recent events and low-cost for trails.
  • Integration: Works seamlessly with CloudWatch Logs, EventBridge, Athena, and Security Hub.
  • Compliance-ready: Meets global compliance standards for auditing.

Core Concepts of AWS CloudTrail

Understanding CloudTrail requires familiarity with its key elements, including events, trails, logs, and integration components.

CloudTrail Events

CloudTrail records three major categories of events:

  • Management Events – Activities related to creating, updating, deleting, and configuring AWS resources (e.g., launching EC2, modifying IAM roles).
  • Data Events – High-volume data-level operations such as S3 object-level access or Lambda function invocations.
  • CloudTrail Insights Events – Anomaly detection logs analyzing unusual API activity patterns.

CloudTrail Trail

A Trail is a configuration that enables delivery of logs to the following destinations:

  • Amazon S3 bucket (long-term storage)
  • CloudWatch Logs (real-time monitoring)
  • EventBridge (event-driven automation)

Trails can be configured at:

  • Account level – Logging activity for a single AWS account
  • Organization level – Centralized logging across all accounts in AWS Organizations

Event History

CloudTrail provides a default Event History which keeps 90 days of recent API activity without requiring any Trail setup. This is free of cost.

CloudTrail Logs

CloudTrail logs are stored in JSON format. They include:

  • User identity information
  • Event time
  • Source IP
  • Event name
  • Response elements
  • Request parameters
  • Resource identifiers

How AWS CloudTrail Works

CloudTrail follows a consistent workflow to capture and deliver API events. This process includes the generation, recording, processing, storage, and analysis of logs.

Step-by-Step Workflow

  1. An API call is made by a user, an AWS service, or another system.
  2. CloudTrail records the API call as an event in JSON format.
  3. The event is added to Event History (automatically).
  4. If a Trail is configured, the event is delivered to S3, CloudWatch Logs, or EventBridge.
  5. Logs can be queried using CloudWatch Logs Insights, Athena, or SIEM tools.
  6. Insights detect anomalies such as spikes in API calls.

CloudTrail Event Structure

Each CloudTrail event is stored as a JSON record. Understanding the structure helps in log analysis and forensic investigations.

Sample CloudTrail Log Entry


{
  "eventVersion": "1.08",
  "userIdentity": {
    "type": "IAMUser",
    "userName": "AdminUser"
  },
  "eventTime": "2024-05-11T10:32:01Z",
  "eventSource": "ec2.amazonaws.com",
  "eventName": "StartInstances",
  "awsRegion": "us-east-1",
  "sourceIPAddress": "203.0.113.10",
  "requestParameters": {
    "instancesSet": ["i-0123456789abcdef0"]
  },
  "responseElements": {
    "startingInstances": [...]
  }
}

This entry indicates that an IAM user named "AdminUser" started an EC2 instance from a particular IP address.

Types of CloudTrail Events

CloudTrail logs several event types relevant to different levels of AWS operations.

Management Events

These events relate to actions that modify or describe AWS resources. They include operations such as:

  • CreateBucket
  • RunInstances
  • CreateRole
  • PutBucketPolicy
  • ModifyDBInstance

Data Events

Data events provide object-level or function-level activity. These logs are more granular and can become high-volume.

Examples include:

  • S3 GetObject
  • S3 PutObject
  • Lambda Invoke
  • RDS Data API calls

CloudTrail Insights Events

CloudTrail Insights uses ML-based anomaly detection to identify unusual patterns such as:

  • Excessive API calls
  • Failed authentication attempts
  • Abnormal data access behavior
  • Unexpected IAM privilege changes

Setting Up AWS CloudTrail

Configuring CloudTrail involves creating a Trail, selecting the event types, and choosing log destinations.

Steps to Create a Trail

  1. Open AWS CloudTrail console.
  2. Choose “Create Trail”.
  3. Specify Trail name.
  4. Select “Management Events”.
  5. Enable “Data Events” (optional).
  6. Select log destination (S3, CloudWatch Logs).
  7. Enable encryption with KMS (recommended).
  8. Review and create.

Example CloudFormation Template for Creating a CloudTrail


Resources:
  MyTrail:
    Type: AWS::CloudTrail::Trail
    Properties:
      TrailName: LoggingTrailDemo
      S3BucketName: cloudtrail-logs-storage-demo
      IsMultiRegionTrail: true
      EnableLogFileValidation: true
      IncludeGlobalServiceEvents: true

CloudTrail Log Storage and Analysis

CloudTrail logs can be stored and analyzed using various AWS tools to detect patterns, troubleshoot issues, or perform compliance checks.

Amazon S3 for Long-Term Storage

Most CloudTrail configurations store logs in S3. This allows:

  • Cost-efficient long-term archival
  • Integration with Athena for SQL querying
  • Backup and cross-region replication

CloudWatch Logs for Real-Time Monitoring

Sending CloudTrail logs to CloudWatch Logs enables:

  • Creating metric filters
  • Real-time alerts
  • Security automation
  • Visualization dashboards

Amazon Athena for Querying Logs

Athena provides serverless querying of CloudTrail logs stored in S3 using SQL.

SIEM Integration

CloudTrail integrates with:

  • Splunk
  • Elastic SIEM
  • QRadar
  • Datadog
  • Security Hub

Security Features of CloudTrail

CloudTrail contains many features designed to improve security monitoring and protect log integrity.

Log File Validation

This feature verifies the integrity of log files by generating digest files using hashing algorithms.

Encryption with AWS KMS

KMS encryption ensures logs are protected at rest using customer-managed keys.

Multi-Region Logging

Multi-region trails ensure that logs from all regions are centralized, preventing gaps in monitoring coverage.

CloudTrail with AWS Organizations

Organization trails enforce logging across all accounts—even newly created ones. This ensures consistent governance at the enterprise level.

Best Practices for AWS CloudTrail

Enable CloudTrail in All Regions

This prevents attackers from operating in unused regions without detection.

Use Organization Trails

Centralized configuration ensures all accounts follow logging requirements.

Store Logs in a Central S3 Bucket

Use restricted access and encryption for the logging bucket.

Enable Log File Validation

Protects against tampering and ensures audit integrity.

Enable CloudTrail Insights

Detects unusual activity patterns automatically.

Use CloudWatch Metric Filters

Set alarms for critical security events such as unauthorized access attempts.

Common Use Cases for AWS CloudTrail

  • Security monitoring and threat detection
  • Compliance auditing (PCI-DSS, HIPAA, GDPR)
  • Resource change tracking
  • Operational troubleshooting
  • Incident response investigations
  • Monitoring IAM activity
  • Detecting malicious activity
  • Tracking S3 object access patterns

Challenges and Limitations of CloudTrail

While CloudTrail is robust, it has some limitations:

  • Data events can become expensive at scale
  • Log analysis requires additional tools
  • Does not capture internal application logs
  • Event delivery to S3 has slight delays
  • Large organizations must manage log storage carefully

AWS CloudTrail is an essential tool for logging, monitoring, and auditing within AWS environments. It provides complete visibility into all AWS operations, making it crucial for security, compliance, governance, operational intelligence, and threat detection. By setting up Trails, enabling multi-region logging, integrating with CloudWatch and Athena, and following best practices, organizations can build a strong logging foundation that supports cloud security and operational excellence.

CloudTrail continues to evolve with advanced features like Insights, organizational controls, and analytics integrations, making it central to AWS Cloud Security and DevOps strategies.

Related Tutorials

Frequently Asked Questions for AWS

An AWS Region is a geographical area with multiple isolated availability zones. Regions ensure high availability, fault tolerance, and data redundancy.

AWS EBS (Elastic Block Store) provides block-level storage for use with EC2 instances. It's ideal for databases and other performance-intensive applications.



  • S3: Object storage for unstructured data.
  • EBS: Block storage for structured data like databases.

  • Regions are geographic areas.
  • Availability Zones are isolated data centers within a region, providing high availability for your applications.

AWS pricing follows a pay-as-you-go model. You pay only for the resources you use, with options like on-demand instances, reserved instances, and spot instances to optimize costs.



AWS S3 (Simple Storage Service) is an object storage service used to store and retrieve any amount of data from anywhere. It's ideal for backup, data archiving, and big data analytics.



Amazon RDS (Relational Database Service) is a managed database service supporting engines like MySQL, PostgreSQL, Oracle, and SQL Server. It automates tasks like backups and updates.



  • Scalability: Resources scale based on demand.
  • Cost-efficiency: Pay-as-you-go pricing.
  • Global Reach: Availability in multiple regions.
  • Security: Advanced encryption and compliance.
  • Flexibility: Supports various workloads and integrations.

AWS Auto Scaling automatically adjusts the number of compute resources based on demand, ensuring optimal performance and cost-efficiency.

The key AWS services include:


  • EC2 (Elastic Compute Cloud) for scalable computing.
  • S3 (Simple Storage Service) for storage.
  • RDS (Relational Database Service) for databases.
  • Lambda for serverless computing.
  • CloudFront for content delivery.

AWS CLI (Command Line Interface) is a tool for managing AWS services via commands. It provides scripting capabilities for automation.

Amazon EC2 is a web service that provides resizable compute capacity in the cloud. It enables you to launch virtual servers and manage your computing resources efficiently.

AWS Snowball is a physical device used for data migration. It allows organizations to transfer large amounts of data into AWS quickly and securely.

AWS CloudWatch is a monitoring service that collects and tracks metrics, logs, and events, helping you gain insights into your AWS infrastructure and applications.



AWS (Amazon Web Services) is a comprehensive cloud computing platform provided by Amazon. It offers on-demand cloud services such as compute power, storage, databases, networking, and more.



Elastic Load Balancer (ELB) automatically distributes incoming traffic across multiple targets (e.g., EC2 instances) to ensure high availability and fault tolerance.

Amazon VPC (Virtual Private Cloud) allows you to create a secure, isolated network within the AWS cloud, enabling you to control IP ranges, subnets, and route tables.



Route 53 is a scalable DNS (Domain Name System) web service by AWS. It connects user requests to your applications hosted on AWS resources.

AWS CloudFormation is a service that enables you to manage and provision AWS resources using infrastructure as code. It automates resource deployment through JSON or YAML templates.



AWS IAM (Identity and Access Management) allows you to control access to AWS resources securely. You can define user roles, permissions, and policies to ensure security and compliance.



  • EC2: Provides virtual servers for full control of your applications.
  • Lambda: Offers serverless computing, automatically running your code in response to events without managing servers.

Elastic Beanstalk is a PaaS (Platform as a Service) offering by AWS. It simplifies deploying and managing applications by automatically handling infrastructure provisioning and scaling.



Amazon SQS (Simple Queue Service) is a fully managed message queuing service that decouples and scales distributed systems.

AWS ensures data security through encryption (both at rest and in transit), compliance with standards (e.g., ISO, SOC, GDPR), and access controls using IAM.

AWS Lambda is a serverless computing service that lets you run code in response to events without provisioning or managing servers. You pay only for the compute time consumed.



AWS Identity and Access Management controls user access and permissions securely.

A serverless compute service running code automatically in response to events.

A Virtual Private Cloud for isolated AWS network configuration and control.

Automates resource provisioning using infrastructure as code in AWS.

A monitoring tool for AWS resources and applications, providing logs and metrics.

A virtual server for running applications on AWS with scalable compute capacity.

Distributes incoming traffic across multiple targets to ensure fault tolerance.

A scalable object storage service for backups, data archiving, and big data.

EC2, S3, RDS, Lambda, VPC, IAM, CloudWatch, DynamoDB, CloudFront, and ECS.

Tracks user activity and API usage across AWS infrastructure for auditing.

A managed relational database service supporting multiple engines like MySQL, PostgreSQL, and Oracle.

An isolated data center within a region, offering high availability and fault tolerance.

A scalable Domain Name System (DNS) web service for domain management.

Simple Notification Service sends messages or notifications to subscribers or other applications.

Brings native AWS services to on-premises locations for hybrid cloud deployments.

Automatically adjusts compute capacity to maintain performance and reduce costs.

Amazon Machine Image contains configuration information to launch EC2 instances.

Elastic Block Store provides block-level storage for use with EC2 instances.

Simple Queue Service enables decoupling and message queuing between microservices.

A serverless compute engine for containers running on ECS or EKS.

Manages and groups multiple AWS accounts centrally for billing and access control.

Distributes incoming traffic across multiple EC2 instances for better performance.

A tool for visualizing, understanding, and managing AWS costs and usage over time.

line

Mail us :

Address :

India
  • Facebook_logo
  • Instagram_logo
  • Linkedin_logo
  • X-twitter_logo
  • Youtube_logo
  • Pinterest_logo

Sub Categories

Copyrights © 2024 letsupdateskills All rights reserved