CostPatrol scan · one AWS organisation · read-only
In one account, last week, we found
$104,724a year

in recoverable AWS spend nobody was watching. CostPatrol itemises every wasted dollar and hands you the exact command to reclaim it.

93 findings 21 rules 12 regions in 1m 52s

That's $11.95 an hour, every hour, until someone looks.

or see a sample report first

Read-only access. No credit card. Free under $5K/month of spend.

Posted to your Slack, every morning

The six biggest leaks

of 93 · sample scan
RDS-O001
staging Aurora fleet · 17 clusters, only 3 serving traffic
−$6,496/mo · $77.9K/yr
DDB-O004
3 DynamoDB tables · provisioned mode, near-idle throughput
−$1,168/mo · $14.0K/yr
RDS-O007
prod-aurora · storage not on I/O-Optimized for its profile
−$520/mo · $6.2K/yr
EBS-O003
vol-0a1b2c4d · unattached, idle for 1,790 days
−$284/mo · $3.4K/yr
NAT-O001
api-prod-gateway · 4,688 GB billable through NAT, routable free
−$190/mo · $2.3K/yr
EC2-O002
monitoring-sensor · m5.large, CPU under 2% for 14 days
−$69/mo
The fix CostPatrol hands you
$ aws ec2 stop-instances --instance-ids i-0f39a2b1c4d5e6f7
Stops a sensor that has reported nothing in two weeks. Reclaims $828/year.
and 87 more findings across EBS, S3, CloudWatch Logs, Lambda, and Elastic IPs.
Total found
$104,724 / year

Two minutes, end to end.

From CloudFormation deploy to ranked findings in Slack. Faster than the meeting where you'd decide who should look into it.

It keeps watching after the scan.

The scan finds the waste that already happened. Anomaly detection catches what changes next. Every service gets a baseline built from your own history, and new spend is judged against the median of the same weekday, so a busy Monday is never compared to a quiet Sunday.

When a service breaks its pattern, the alert lands in Slack with the service, the region, and how far off baseline it is. You find out within days. The invoice would have told you at the end of the month.

Anomaly alerts ship with Pro. The scan above stays free.

Zero write permissions.

The CloudFormation template creates one read-only IAM role in your account, scoped with a unique external ID. You can read every line of it before you deploy, and it stays under your control.

  • Create, modify, or delete a resource: impossible
  • Change IAM roles, policies, or permissions: impossible
  • Keep your data after you disconnect: deleted on offboarding
Read all 138 permissions and why each one is needed →

No Create. No Put. No Delete. Writes are impossible by policy, not by promise.

Mohamed Shehabeldin
CostPatrol encodes everything I check by hand into 123 automated rules. Ten years of running AWS infrastructure, written down as code that audits yours.
Mohamed Shehabeldin · AWS infrastructure engineer, builder of CostPatrol

Free to find out.

$0under $5K/mo AWS spend

A real weekly scan of your account: the full waste total and your top finding. Free forever, no credit card.

$199/mo$5K–$25K/mo AWS spend

Daily scans across up to 20 accounts. Every finding with its resource ID and fix command, anomaly alerts in Slack, 90-day history.

3x money-back guarantee: if month one doesn't surface 3x your subscription in annual savings, full refund. Compare all plans →

Want the deeper read first? See the complete AWS cost optimization guide or compare 11 AWS cost optimization tools tested in 2026.

You've been meaning to do this.

The account above was leaking $287 a day while nobody looked. Checking yours takes 2 minutes, and if there's nothing to find, you lost a coffee break.

Free under $5K/month. No credit card. Read-only access.

3x money-back guarantee on paid plans.