[DISCLAIMER] Links e materiais disponibilizados como conteúdo adicional para os estudos nos treinamentos da AWS. As informações aqui inseridas são mantidas por mim mesmo, e não expressam nenhuma informação oficial por parte da AWS; mesmo que em sua maioria sejam artigos e blog posts oficiais da Amazon Web Services.
Dicas de estudo para as certificações
- Escolha sua carreira de certificações e organize o seu roteiro de aprendizado
- Revise o arquivo Exam Guide do respectivo exame de certificação
- Defina uma estratégia eficiente de estudos. Há algumas técnicas bem interessantes como o Retrieval, Spaced e o Elaboration
- Faça um treinamento oficial, presencial ou remoto, ministrado pela AWS. Veja mais em aws.training
- Caso vá fazer o treinamento oficial, já prepare seu ambiente para materiais e labs no Class Prep
- Organize um roteiro sequencial de estudos, usando os Ramp-Up Guides
- Faça laboratórios e ganhe experiência prática, com os Tutoriais de Hands-On
- Revise o arquivo de Sample Questions do respectivo exame de certificação
- Revise os whitepapers e FAQs dos serviços que estão no escopo do exame de certificação
- Assista os vídeos da série "This is My Architecture", com exemplos de casos reais dos clientes AWS
- Faça um treinamento oficial da AWS com foco na preparação do exame; através dos cursos Exam Readiness
- Acompanhe nossos eventos e webinars da comunidade AWS em LATAM, pois sempre há conteúdo de referência para ajudar nos estudos
- Faça um Practice Exam oficial (simulado)
- Agende seu exame de certificação na Person Vue
- Adicione 30 minutos a mais em seu exame com o ESL +30 MINUTES (disponível para não-nativos de língua inglesa)
- Seja um certificado AWS!
- Aproveite os benefícios concedidos só a quem tem certificações AWS
Architecting on AWS
- AWS Cloud Services (Catalog)
- AWS Global Cloud Infrastructure Map
- AWS Global Infrastructure Regions
- Learn how we secure AWS data centers
- Compute Abstractions on AWS: A Visual Story
- AWS Well-Architected - Learn, measure, and build using architectural best practices
- AWS Well-Architected Framework
- Financial Services Industry Lens - AWS Well-Architected Framework
- AWS Well-Architected Tool – Review Workloads Against Best Practices
- AWS Well-Architected Tool – DEMO
- Nine Ways to Reduce Your AWS Bill
- Desmistificando as 9 formas de reduzir custos na AWS
- Conhecendo um pouco mais sobre o Graviton2
- Amazon S3 + Amazon CloudFront: A Match Made in the Cloud
- How to set up a CloudFront distribution for Amazon S3
- Overview of Managing Access on S3
- Diving Deep on S3 Consistency
- Amazon S3 Path Deprecation Plan – The Rest of the Story
- Amazon EC2 Instance Types
- Spot Instance Advisor
- Running high-scale web applications on Amazon EC2 Spot Instances
- Amazon EC2 Auto Scaling Lifecycle Hooks
- Elastic Load Balancing and Amazon EC2 Auto Scaling
- Amazon EBS Volume Types
- Recovering files from an Amazon EBS volume backup
- New – Multi-Attach for Provisioned IOPS (io1) Amazon EBS Volumes
- Can I use EBS Multi-Attach volumes to enable multiple EC2 instances to simultaneously access a standard file system?
- Working with Aurora Multi-Master Clusters
- Amazon Aurora Backtrack – Turn Back Time
- Amazon DynamoDB - Choosing Initial Throughput Settings
- Best Practices for Designing and Architecting with DynamoDB
- Best Practices for Designing and Using Partition Keys Effectively
- Building resiliency at scale at Tinder with Amazon ElastiCache
- How to work with Cluster Mode on Amazon ElastiCache for Redis
- Comparing Redis and Memcached
- Common ElastiCache Use Cases and How ElastiCache Can Help
- Introducing Amazon Elasticsearch Service as a target in AWS Database Migration Service
- Migration Complete – Amazon’s Consumer Business Just Turned off its Final Oracle Database
- Scaling Your Amazon RDS Instance Vertically and Horizontally
- Right-size Amazon RDS instances at scale based on Oracle performance metrics
- Using in-Region read replicas in Amazon RDS for SQL Server
- New – AWS Storage Gateway Hardware Appliance
- Expanded availability and streamlined ordering of the AWS Storage Gateway Hardware Appliance
- Using static IP addresses for Application Load Balancers
- New – Application Load Balancer Simplifies Deployment with Weighted Target Groups
- How to securely publish Internet applications at scale using Application Load Balancer and AWS PrivateLink
- Debugging tool for network connectivity from Amazon VPC
- Multiple Region Multi-VPC Connectivity
- Working with Direct Connect Gateways
- AWS Direct Connect Partners
- How do I provision an AWS Direct Connect connection?
- Building a Serverless Dynamic DNS System with AWS
- How do I create an IAM policy to control access to Amazon EC2 resources using tags?
- Simplify granting access to your AWS resources by using tags on AWS IAM users and roles
- Writing IAM Policies: Grant Access to User-Specific Folders in an Amazon S3 Bucket
- IAM Policies and Bucket Policies and ACLs! Oh, My! (Controlling Access to S3 Resources)
- Now Create and Manage AWS IAM Roles More Easily with the Updated IAM Console
- Guidelines for protecting your AWS account while using programmatic access
- Creating a Billing Alarm to Monitor Your Estimated AWS Charges
- How to better monitor your custom application metrics using Amazon CloudWatch Agent
- CloudWatch Search Expression Examples
- Upgrading to Amazon EventBridge from Amazon CloudWatch Events
- CloudWatch Logs Subscription Consumer + Elasticsearch + Kibana Dashboards
- Running Scripts from GitHub and Amazon S3
- Validating AWS CloudFormation Templates
- Amazon CloudFront – Support for Dynamic Content
- Amazon CloudFront Dynamic Content Delivery
- Can I use a single CloudFront web distribution to serve content from multiple origins using multiple behaviors?
- Implementation Considerations - Learn Caching Design Patterns
- Caching Content Based on Query String Parameters
- Amazon API Gateway - Enabling API caching to enhance responsiveness
- Powering Gaming Applications with Amazon DynamoDB
- Amazon DynamoDB: Gaming use cases and design patterns
- AWS Serverless Application Model
- Introducing AWS SAM Pipelines: Automatically generate deployment pipelines for serverless applications
- Firecracker – Lightweight Virtualization for Serverless Computing
- Video on Demand on AWS
- Cross-Region Backups
- Chaos Monkey
- How do I close my AWS account?
Advanced Architecting on AWS
- Getting started with tag policies
- AWS Config: Checking for Compliance with New Managed Rule Options
- AWS re:Invent 2019: Advanced VPC design and new capabilities for Amazon VPC
- Route 53 - Choosing between alias and non-alias records
- New – Application Load Balancing via IP Address to AWS & On-Premises Resources
- Amazon VPC for On-Premises Network Engineers – Part 1
- Amazon VPC for On-Premises Network Engineers – Part 2
- How do I increase my security group limits in Amazon VPC?
- Simplify network routing and security administration with VPC Prefix Lists
- Overlay Multicast in Amazon Virtual Private Cloud
- How to run Schneider Electric’s Responder OMS using AWS Transit Gateway multicast
- Connecting Networks with Overlapping IP Ranges
- Transit Gateway vs VPC peering
- Building a global network using AWS Transit Gateway Inter-Region peering
- Simplify SD-WAN connectivity with AWS Transit Gateway Connect
- Building a Scalable and Secure Multi-VPC AWS Network Infrastructure
- Introducing Bring Your Own IP (BYOIP) for Amazon VPC
- Configurable Reverse DNS for Amazon EC2’s Elastic IP Addresses
- How can I set up Active-Passive failover with geolocation records in Route 53?
- Using redundant Site-to-Site VPN connections to provide failover
- Scaling VPN throughput using AWS Transit Gateway
- How do I create a certificate-based VPN using AWS Site-to-Site VPN?
- Configurando uma conexão VPN site a site entre a AWS e o Azure
- Improve VPN Network Performance of AWS Hybrid Cloud with Global Accelerator
- Configure and Deploy AWS PrivateLink
- AWS PrivateLink Update – VPC Endpoints for Your Own Applications & Services
- Integrating AWS Transit Gateway with AWS PrivateLink and Amazon Route 53 Resolver
- Interface endpoint properties and limitations (PrivateLink Limitations)
- How can I use AWS RAM to share Route 53 Resolver rules across multiple VPCs and AWS accounts?
- Centralized DNS management of hybrid cloud with Amazon Route 53 and AWS Transit Gateway
- How can I configure VPN as a backup for my AWS Direct Connect connection?
- How do I configure Direct Connect and VPN failover with Transit Gateway?
- VPN connection as a backup to AWS DX connection example
- How to order AWS Direct Connect using the Equinix Fabric Portal
- How do I provision a new link aggregation group (LAG) using AWS Direct Connect connections?
- What’s the difference between a hosted virtual interface (VIF) and a hosted connection?
- Setting up AWS Direct Connect gateway to route DX traffic to any AWS Region
- AWS Solution – Transit VPC
- How to integrate third-party firewall appliances into an AWS environment
- New – VPC Ingress Routing – Simplifying Integration of Third-Party Appliances
- VPC sharing: A new approach to multiple accounts and VPC management
- Using VPC Sharing for a Cost-Effective Multi-Account Microservice Architecture
- Securing VPCs Egress using IDS/IPS leveraging Transit Gateway
- Deployment models for AWS Network Firewall
- Centralized inspection architecture with AWS Gateway Load Balancer and AWS Transit Gateway
- Deploy an Elastic HPC Cluster
- Securely extend and access on-premises Active Directory domain controllers in AWS
- How to Connect Your On-Premises Active Directory to AWS Using AD Connector
- Integrando o AWS Directory Service com o AWS Console – AD Connector
- AWS AD Connector – o curioso caso de falha em localização de objetos
- How to migrate your on-premises domain to AWS Managed Microsoft AD using ADMT
- How to Switch Easily Between AWS Accounts by Using the AWS Management Console and AWS Directory Service
- How do I use the AWS CLI to perform a multipart upload of a file to Amazon S3?
- Building and Maintaining an Amazon S3 Metadata Index without Servers
- How can I check the integrity of an object uploaded to Amazon S3?
- Performance Design Patterns for Amazon S3
- S3 Select and Glacier Select – Retrieving Subsets of Objects
- AWS Snowball Device Differences
- Best Practices for the AWS Snowball Edge Device
- Enable password authentication for AWS Transfer for SFTP using AWS Secrets Manager
- Optimizing WordPress performance with Amazon EFS
- Use the Serverless Developer Portal to Catalog Your API Gateway APIs
- How to use service control policies to set permission guardrails across accounts in your AWS Organization
- Manage Software Licenses with AWS License Manager – DEMO
- AWS RAM - Shareable AWS resources
- AWS RAM managed permissions
- Managing AWS resources across multiple accounts and Regions using AWS Systems Manager Automation
- How Moody’s uses AWS Systems Manager to patch servers across multiple cloud providers
- Centralized multi-account and multi-Region patching with AWS Systems Manager Automation
- Understanding Burst vs. Baseline Performance with Amazon RDS and GP2
- Scaling Based on Amazon SQS
- Under the Hood: AWS CodeDeploy and Auto Scaling Integration
- Elastic Beanstalk - Advanced environment customization with configuration files (.ebextensions)
- New – Amazon Connect and Amazon Lex Integration
- Integrating Amazon SES with Microsoft Exchange
- Integrating Amazon SES with your existing email server
- How to use domain with Amazon SES in multiple accounts or regions
- AWS Server Migration Service – Server Migration to the Cloud Made Easy
- How to upgrade your legacy Windows applications to new versions of Windows Server without refactoring
- Importing Data to an Amazon RDS MySQL or MariaDB DB Instance with Reduced Downtime
- Strategies for Migrating Oracle Databases to AWS
- Migrating Oracle databases with near-zero downtime using AWS DMS
- Validating database objects after migration using AWS SCT and AWS DMS
- Schema Conversion Tool blog series: Introducing new features in build 613
- Enable large-scale database migrations with AWS DMS and AWS Snowball
- Query any data source with Amazon Athena’s new federated query
- Using ‘athena-express’ to Simplify SQL Queries on Amazon Athena
- Harmonize, Query, and Visualize Data from Various Providers using AWS Glue, Amazon Athena, and Amazon QuickSight
- Developing AWS Glue ETL jobs locally using a container
- Setting Up AWS Lake Formation
- Implicit Lake Formation Permissions
- Blueprints and Workflows in Lake Formation
- Security in AWS Lake Formation
- Using AWS Cost Explorer to analyze data transfer costs
- Best practices for resizing and automatic scaling in Amazon EMR
- Monitor and Optimize Analytic Workloads on Amazon EMR with Prometheus and Grafana
- DynamoDB Streams Use Cases and Design Patterns
- My DynamoDB table is being throttled
- AWS Outposts Now Available – Order Yours Today!
- Deploy a highly available AWS Storage Gateway on a VMware vSphere cluster
- How can I set up VMware High Availability on my file gateway?
- Caching Overview on AWS
- Deliver Your App’s Dynamic Content Using Amazon CloudFront – Getting Started Template
- Lambda@Edge Example Functions
- Introducing CloudFront Functions – Run Your Code at the Edge with Low Latency at Any Scale
- Using Amazon CloudWatch Lambda Insights to Improve Operational Visibility
- Amazon Builder's Library - Caching challenges and strategies
- How to set up an outbound VPC proxy with domain whitelisting and content filtering
- WordPress: Best Practices on AWS
- AWS Best Practices for DDoS Resiliency
- AWS Fault Injection Simulator – Use Controlled Experiments to Boost Resilience
- Deploy a dashboard for AWS WAF with minimal effort
- WAF - Preconfigured Rules & Tutorials
- How do I block common attacks with AWS WAF?
- AWS Managed Rules rule groups list
- WAF Sandwich
- Best practices for using AWS WAF CAPTCHA
- AWS WAF CAPTCHA challenge puzzles
- How AWS WAF CAPTCHA works
- AWS Centralized WAF and VPC Security Group Management
- Subscribe to AWS Public IP Address Changes via Amazon SNS
- AWS Solutions - AWS Perspective
- Create real-time clickstream sessions and run analytics with Amazon Kinesis Data Analytics, AWS Glue, and Amazon Athena
Migrating to AWS
- AWS Ramp-Up Guide: Migration
- AWS Foundations: Strategies and Tools to Perform Large-Scale Migrations (Portuguese)
- Using a Cloud Center of Excellence (CCOE) to Transform the Entire Enterprise
- How to Create a Cloud Center of Excellence in Your Enterprise
- The Journey Toward Cloud-First & the Stages of Adoption
- Cloud Enablement Engine: A Practical Guide
- Mobilize your organization to accelerate large-scale migrations
- 4 Dos and Don’ts When Using the Cloud to Experiment
- AWS Cloud Adoption Framework (CAF) 3.0 is Now Available
- Yes, You Can Migrate Your Mainframe to the Cloud
- Migrating AS/400 and IBM i Applications to AWS with Infinite
- Migration governance
- Organizing Your AWS Environment Using Multiple Accounts
- What is a landing zone?
- Customizations for AWS Control Tower
- Control AWS resources available to your users using AWS Service Catalog
- Security, risk, and compliance
- Migration Evaluator: Agentless Collector Installation Walkthrough
- TSO Logic: Software Demo
- Migration Hub Import
- Amazon EC2 instance recommendations
- Assessing Migration Readiness
- Perform Discovery and Then Migrate
- Migrate applications using AWS SMS
- Migrating Azure VM to AWS using AWS SMS Connector for Azure
- Containerizing a Java application on Linux
- Importing a disk as a snapshot using VM Import/Export
- How to Use the New AWS Application Migration Service for Lift-and-Shift Migrations
- Avoid affecting your production environment during migration with AWS Application Migration Service
- Account and VPC Considerations for VMware Cloud on AWS
- VMware Cloud on AWS - Network Design Fundamentals
- VMware Cloud on AWS - NSX-T Networking Concepts
- VMware Cloud on AWS: Advanced Networking and Security with NSX-T SDDC
- Get VMware Server Information into AWS Migration Hub Using the Agentless AWS Discovery Connector
- Migrating ASP.NET applications to Elastic Beanstalk with Windows Web Application Migration Assistant
- AWS App2Container – A New Containerizing Tool for Java and .NET Applications
- Open sourcing the Porting Assistant for .NET
- AWS Database Migration Service Automation Framework
- AWS Database Migration Service Best Practices
- Migrating Your Databases to Amazon Aurora
- Windows to Linux replatforming assistant for Microsoft SQL Server Databases
- Decomposing monoliths into microservices
- Containers & microservices
- Five keys to a successful SAP migration on AWS
Cloud Financial Management for Builders
- Cloud Economics Center
- Cloud economics: The value of a TCO assessment
- Cloud, CapEx, and OpEx: Reframing the Conversation
- AWS Well-Architected Framework (PDF version)
- Cost Optimization
- Cost Optimization Pillar - AWS Well-Architected Framework
- How AWS Pricing Works: AWS Pricing Overview
- TCO and cost optimization: Best practices for managing usage on AWS
- Use Tagging to Organize Your Environment and Drive Accountability
- Tagging Best Practices: Implement an Effective AWS Resource Tagging Strategy
- Standardize Names for AWS Resources
- Grant permission to tag resources during creation
- Service Authorization Reference - list of the actions, resources, and condition keys that are supported by each AWS service
- Visualizing AWS Config data using Amazon Athena and Amazon QuickSight
- Query and Visualize AWS Cost and Usage Data Using Amazon Athena and Amazon QuickSight
- How do I ingest and visualize the AWS Cost and Usage Report (CUR) into Amazon QuickSight?
- Introducing AWS Application Cost Profiler, offering user-based cost data of shared AWS resources
- Instance purchasing options
- Amazon EC2 Reserved Instances and Other AWS Reservation Models
- Amazon EC2 Reserved Instance Marketplace
- How Reserved Instances are applied (Normalization factor)
- How Spot Instances Work
- Avoiding unexpected charges
- Volume discounts
- Tracking your AWS Free Tier usage
- IAM Tutorial: Delegate access to the billing console
- AWS Trusted Advisor best practice checklist
- It just got easier to discover and compare EC2 instance types
- Optimizing your cost with Rightsizing Recommendations
- Right Sizing: Provisioning Instances to Match Workloads
- CloudWatch Logs agent reference
- Collecting metrics and logs from Amazon EC2 instances and on-premises servers with the CloudWatch agent
- How can I see why I was charged for CloudWatch usage, and then how can I reduce future charges?
- Lowering costs and focusing on our customers with Amazon CloudWatch embedded custom metrics
- Getting Started with Amazon EC2 Spot Instances
- Amazon EMR on EC2 Spot Instances
- Optimizing for cost, availability and throughput by selecting your AWS Batch allocation strategy
- Cost Optimize your Jenkins CI/CD pipelines using EC2 Spot Instances
- Optimizing and Scaling Machine Learning Training with Managed Spot Training for Amazon SageMaker
- Spot Fleet example configurations
- Spot Instance interruptions
- Spot Integration with Other AWS Services
- EC2 Fleet – Manage Thousands of On-Demand and Spot Instances with One Request
- Maintaining a Fixed Number of Instances in Your Auto Scaling Group
- Manual Scaling for Amazon EC2 Auto Scaling
- Scheduled Scaling for Amazon EC2 Auto Scaling
- Dynamic Scaling for Amazon EC2 Auto Scaling
- How can I update yum or install packages without internet access on my EC2 instances running Amazon Linux 1 or Amazon Linux 2?
- How do I enable the EPEL repository for my Amazon EC2 instance running CentOS, RHEL, or Amazon Linux?
- How can we regularly update a disconnected system (A system without internet connection)?
- AMI billing information fields
- Microsoft Licensing on AWS
- Simplified Bring-Your-Own-License experience using AWS License Manager
- Simplify your BYOL Experience with Dedicated Host Management Capabilities in AWS License Manager
- Best practices for working with AWS Lambda functions
- Comparing NAT gateways and NAT instances
- Overview of Data Transfer Costs for Common Architectures
- Cloud Storage on AWS
- Overview of managing clusters in Amazon Redshift
- What is a landing zone?
- Cost Optimisation Best Practices
- Optimizing the cost of serverless web applications
- How do you optimize your Serverless application’s costs?
- 10 Things Serverless Architects Should Know
Planning and Designing Databases on AWS
- Learning Path - Databases
- Six free courses for building modern apps with purpose-built databases
- Hands-On Tutorials - Move to managed databases
- Databases on AWS: The Right Tool for the Right Job
- Amazon RDS Multi-AZ Deployments
- Amazon RDS Read Replicas
- How can I distribute read requests across multiple Amazon RDS read replicas?
- How can I perform write operations to my Amazon RDS for MariaDB or MySQL DB instance read replica?
- Implementing a disaster recovery strategy with Amazon RDS
- Best storage practices for running production workloads on hosted databases with Amazon RDS or Amazon EC2
- Applying best practices for securing sensitive data in Amazon RDS
- Securing data in Amazon RDS using AWS KMS encryption
- Sharding with Amazon Relational Database Service
- Scaling Your Amazon RDS Instance Vertically and Horizontally
- Using AWS Cost Management products to help save costs on Amazon RDS Reserved Instances
- IAM database authentication for MySQL and PostgreSQL
- Sharing a DB snapshot
- Backing up and restoring an Amazon RDS DB instance
- Amazon RDS Under the Hood: Single-AZ instance recovery
- Amazon RDS Under the Hood: Multi-AZ
- Monitoring an Amazon RDS DB instance
- Enhanced Monitoring
- Using Amazon RDS event notification
- Amazon RDS database log files
- How do I enable and monitor logs for an Amazon RDS MySQL DB instance?
- Architecting for database encryption on AWS
- Migrate TDE-enabled SQL Server databases to Amazon RDS for SQL Server
- Securing data in Amazon RDS using AWS KMS encryption
- Troubleshooting for Amazon RDS
- Monitoring with the Performance Insights dashboard
- Best storage practices for running production workloads on hosted databases with Amazon RDS or Amazon EC2
- Multi-AZ deployments for Amazon RDS for Microsoft SQL Server
- Multi-region SQL Server deployment using distributed availability groups
- Amazon DynamoDB global tables
- How to use Amazon DynamoDB global tables to power multiregion architectures
- Amazon DynamoDB auto scaling: Performance and cost optimization at any scale
- New – Export Amazon DynamoDB Table Data to Your Data Lake in Amazon S3, No Code Writing Required
- I'm using an on-demand DynamoDB table, but I'm still getting throttled. Why?
- Optimize Amazon DynamoDB scan latency through schema design
- How Amazon DynamoDB adaptive capacity accommodates uneven data access patterns (or, why what you know about DynamoDB might be outdated)
- AWS re:Invent 2018: Amazon DynamoDB Under the Hood: How We Built a Hyper-Scale Database
- Optimize Amazon DynamoDB scan latency through schema design
- Point-in-Time Recovery for DynamoDB
- On-Demand Backup and Restore for DynamoDB
- Backfilling an Amazon DynamoDB Time to Live (TTL) attribute with Amazon EMR
- How to automate the auditing of operational best practices for your AWS account
- Troubleshooting issues in your DynamoDB Encryption Client application
- Error Handling with DynamoDB
- Caching for performance with Amazon DocumentDB and Amazon ElastiCache
- Boosting application performance and reducing costs with Amazon ElastiCache for Redis
- Amazon Elasticsearch Service Troubleshooting
- Analyze Amazon Neptune Graphs using Amazon SageMaker Jupyter Notebooks
- Visualize data in Amazon Neptune using VIS.js library
- How LifeOmic’s JupiterOne simplifies security and compliance operations with Amazon Neptune
- Integrate Power BI with Amazon Redshift for insights and analytics
- Top 8 Best Practices for High-Performance ETL Processing Using Amazon Redshift
- Top 10 performance tuning techniques for Amazon Redshift
- Tuning query performance
- Amazon Redshift - Troubleshooting queries
- Amazon Redshift - Troubleshooting data loads
- Introducing the Aurora Storage Engine
- Amazon Aurora storage and reliability
- Working with Aurora Multi-Master Clusters
- How Autodesk Increased Database Scalability and Reduced Replication Lag with Amazon Aurora
- Troubleshooting for Aurora
- Amazon Aurora as an Alternative to Oracle RAC
- Reducing Aurora PostgreSQL storage I/O costs
- How Cloudability boosted performance, simplified tuning, and lowered costs with Amazon Aurora
- Amazon Aurora Update – Call Lambda Functions From Stored Procedures; Load Data From S3
- Amazon Aurora Update – PostgreSQL Compatibility
- Introduction to Aurora PostgreSQL cluster cache management
- Managing performance and scaling for Amazon Aurora MySQL
- Audit Amazon Aurora Database Logs for Connections, Query Patterns, and More, using Amazon Athena and Amazon QuickSight
- Best practices with Amazon Aurora PostgreSQL
- Auditing an Amazon Aurora Cluster
- Best practices for securing sensitive data in AWS data stores
- Database Migration—What Do You Need to Know Before You Start?
- Reduce database cost and improve availability when you migrate to the AWS Cloud
- How do I perform common DBA tasks for Amazon RDS DB instances?
- Part 1 – Role of the DBA When Moving to Amazon RDS: Responsibilities
- Part 2 – Role of the DBA When Moving to Amazon RDS: Automation
- How to Scale AWS Database Migration Service (DMS) replication instances
- Best practices for migrating an Oracle database to Amazon RDS PostgreSQL or Amazon Aurora PostgreSQL: Source database considerations for the Oracle and AWS DMS CDC environment
- How to solve some common challenges faced while migrating from Oracle to PostgreSQL
- Automating database migration and refreshing activities with AWS DMS
- Create AWS CloudFormation templates for AWS DMS tasks using Microsoft Excel
- Automating table mappings creation in AWS DMS
- AWS Database Migration Service resources (Migration Playbooks)
Systems Operations on AWS
- AWS Command Line Interface
- AWS CLI - Command completion
- AWS CLI v2 is now generally available
- AWS CLI - Configuration and credential file settings
- AWS Tools for PowerShell
- Using the AWS Tools for Windows PowerShell
- AWS Tools for PowerShell Cmdlet Reference
- Building a Virtual Classroom Application using the Amazon Chime SDK
- Use EC2Rescue for Windows Server GUI
- How can I execute user data to automatically create a file with every restart of my Amazon EC2 instance?
- Logging Windows Amazon EC2 UserData activity in Amazon CloudWatch
- How can I connect to my Amazon EC2 instance if I lost my SSH key pair after its initial launch?
- How do I install AWS Systems Manager Agent (SSM Agent) on an Amazon EC2 Linux instance at launch?
- Running Ansible Playbooks using EC2 Systems Manager Run Command and State Manager
- Query for the latest Amazon Linux AMI IDs using AWS Systems Manager Parameter Store
- Query for the Latest Windows AMI Using Systems Manager Parameter Store
- New – Query for AWS Regions, Endpoints, and More Using AWS Systems Manager Parameter Store
- How AWS Systems Manager Parameter Store uses AWS KMS
- The Right Way to Store Secrets using Parameter Store
- Use Parameter Store to Securely Access Secrets and Config Data in AWS CodeDeploy
- Rotating Your AWS Secrets Manager Secrets
- How to create and retrieve secrets managed in AWS Secrets Manager using AWS CloudFormation templates
- Patching your Windows EC2 instances using AWS Systems Manager Patch Manager
- How to patch Windows EC2 instances in private subnets Using AWS Systems Manager
- How Moody’s uses AWS Systems Manager to patch servers across multiple cloud providers
- Windows Server Update Services on AWS
- How do I install .NET Framework 3.5 on an EC2 Windows instance that doesn't have internet access?
- How patches are installed - AWS Systems Manager
- How do I enable the EPEL repository for my Amazon EC2 instance running CentOS, RHEL, or Amazon Linux?
- Packaging to Distribution – Using AWS Systems Manager Distributor to deploy Datadog
- Taking Advantage of Amazon EC2 Spot Instance Interruption Notices
- CPU credits and baseline utilization for burstable performance instances
- Understanding T2 Standard Instance CPU Credits
- How do I stop and start Amazon EC2 instances at regular intervals using Lambda?
- How do I stop and start my instances using the AWS Instance Scheduler?
- AWS Transit Gateway Egress VPC Demo
- Resolving DNS queries between VPCs and your network
- Integrating your Directory Service’s DNS resolution with Amazon Route 53 Resolvers
- Securely Connect to Linux Instances Running in a Private Amazon VPC (Agent Forwarding)
- Do I need to set a static private IP address for an Amazon EC2 Windows instance?
- Why am I receiving the error message "You are not authorized to perform this operation" when I try to launch an EC2 instance?
- How to use Amazon AppStream 2.0 to reduce your bastion host attack surface
- New – Port Forwarding Using AWS System Manager Session Manager
- Remote Desktop Gateway on AWS - AWS Quick Starts
- Announcing Lambda Support for PowerShell Core
- A Simple Way to Export Your IAM Settings
- Reset Your AWS Root Account’s Lost MFA Device Faster by Using the AWS Management Console
- How can I reset the administrator password on an EC2 Windows instance?
- Securely Access Services Over AWS PrivateLink
- Introducing AWS Gateway Load Balancer – Easy Deployment, Scalability, and High Availability for Partner Appliances
- ELB Connection Draining – Remove Instances From Service With Care
- A subnet in use by load balancers in my VPC has insufficient IP addresses
- AWS Network Firewall – New Managed Firewall Service in VPC
- Use Cases for AWS Managed Microsoft AD
- Enabling SAML for your AWS resources
- Enabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0
- How to automate SAML federation to multiple AWS accounts from Microsoft Azure Active Directory
- How to Enable Your Users to Access Office 365 with AWS Managed Microsoft AD
- Enable Office 365 with AWS Managed Microsoft AD without user password synchronization
- How do I grant my Active Directory users access to the API or AWS CLI with AD FS?
- Managing domain membership of dynamic fleet of EC2 instances
- How to retrieve short-term credentials for CLI use with AWS Single Sign-on
- How to Run ECS Windows Task with group Managed Service Account (gMSA)
- Automatically update instances in an Amazon ECS cluster using the AMI ID parameter
- Managing Amazon EKS Clusters with Rancher
- AWS Batch Use cases
- Build Your Own Face Recognition Service Using Amazon Rekognition
- Using Amazon RDS Proxy with AWS Lambda
- Use Amazon WorkSpaces on Your Samsung Galaxy S8/S8+ With the New Samsung DeX
- How can I use DataSync to transfer data from an Amazon EFS file system to an Amazon S3 bucket?
- AWS DataSync Demo - Easily Transfer Data to and From AWS Up to 10x Faster
- New – Amazon FSx for Windows File Server – Fast, Fully Managed, and Secure
- Working with Shadow Copies
- Deploying Multi-AZ File Systems
- Amazon FSx for Windows File Server, Capítulo 1 – Criando e configurando
- Amazon FSx for Windows File Server, Capítulo 2 – Mais funcionalidades: Shadow Copy, DFS Namespace, Data Deduplication e Quotas
- Amazon FSx for Windows File Server, Capítulo 3 – Mapeando o FSx para servidores Linux
- Amazon FSx for Windows File Server, Capítulo 4 – Migrando dados com o AWS DataSync (Cenário de Multi-Região)
- Achieving 80,000 IOPS for SQL Server on AWS EC2 and EBS
- New – EBS Direct APIs – Programmatic Access to EBS Snapshot Content
- AWS re:Invent 2018: Powering Next-Gen EC2 Instances: Deep Dive into the Nitro System
- AWS re:Inforce 2019: Security benefits of the Nitro architecture
- How Amazon Uses Explosive-Resistant Devices To Transfer Data To AWS (AWS Snowball)
- AWS OpsHub for Snow Family
- Amazon S3 performance and cost optimization
- Protecting Amazon S3 Against Object Deletion (S3 "Recycle Bin")
- What are the differences between data and management events in CloudTrail?
- AWS Compute Optimizer – Your Customized Resource Optimization Service
- Amazon CloudWatch Concepts
- CloudWatch Logs Agent Reference
- CloudWatch Events Tutorials
- Monitoring Trusted Advisor with Amazon CloudWatch Events and Amazon CloudWatch
- AWS Trusted Advisor Aggregator
- Monitoring Amazon GuardDuty Findings with Amazon CloudWatch Events
- How Does AWS CloudFormation Work?
- How do I resolve AWS CloudFormation template validation errors or template format errors?
- Up your AWS CloudFormation testing game using TaskCat
- A deep dive into testing with TaskCat
- Creating a Stack on the AWS CloudFormation Console
- New – Import Existing Resources into a CloudFormation Stack
- How do I prevent the resources in my AWS CloudFormation stack from getting deleted or updated?
- Template Snippets
- AWS CloudFormation Update – Public Coverage Roadmap & CDK Goodies
- AWS re:Invent 2019: Deep dive into AWS Cloud Development Kit
- AWS re:Invent 2019: Infrastructure as .NET with the AWS CDK
- Getting Started with AWS Support
- AWS Tagging Best Practices
- AWS re:Invent 2015: A Day in the Life of a Netflix Engineer
- AWS re:Invent 2016: Another Day in the Life of a Netflix Engineer
- AWS re:Invent 2017: A Day in the Life of a Netflix Engineer III
- AWS re:Invent 2018: Another Day in the Life of a Cloud Network Engineer at Netflix
- AWS re:Invent 2019: A day in the life of a Netflix engineer IV
- Conformity Monkey
DevOps Engineering on AWS
- Introduction to DevOps on AWS
- DevOps and AWS (Case Studies)
- What Team Structure is Right for DevOps to Flourish?
- What is Continuous Delivery?
- What is Continuous Integration?
- Configuration Drift: Phoenix Server vs Snowflake Server Comic
- Walkthrough: Refer to resource outputs in another AWS CloudFormation stack
- AWS CloudFormation Sample templates
- AWS CloudFormation best practices
- CloudFormation helper scripts reference
- Integrating AWS CloudFormation Guard into CI/CD pipelines
- Introducing AWS CloudFormation Guard 2.0
- Using OPA to create AWS Config rules
- CloudFormation Update – CLI + Third-Party Resource Support + Registry
- Infrastructure as Code
- AWS CDK examples
- CDK Pipelines: Continuous delivery for AWS CDK applications
- AWS CLI - Command completion
- Error retries and exponential backoff in AWS
- AWS SAM resource and property reference
- Practicing Continuous Integration and Continuous Delivery on AWS
- Using Federated Identities with AWS CodeCommit
- Migrate a repository incrementally
- Working with repositories in AWS CodeCommit
- Integrate GitHub monorepo with AWS CodePipeline to run project-specific CI/CD pipelines
- Validating AWS CodeCommit Pull Requests with AWS CodeBuild and AWS Lambda
- Tutorial: Create a simple pipeline (CodeCommit repository)
- Multi-branch CodePipeline strategy with event-driven architecture
- Building a Cross-account CI/CD Pipeline
- Building a CI/CD pipeline for cross-account deployment of an AWS Lambda API with the Serverless Framework
- Amazon CodeGuru features
- New- Amazon DevOps Guru Helps Identify Application Errors and Fixes
- Software Package Management with AWS CodeArtifact
- Test Reports with AWS CodeBuild
- AWS Elastic Beanstalk sample for CodeBuild
- Setting up a CI/CD pipeline by integrating Jenkins with AWS CodeBuild and AWS CodeDeploy
- Building a Secure Cross-Account Continuous Delivery Pipeline
- Building a CI/CD pipeline for cross-account deployment of an AWS Lambda API with the Serverless Framework
- AWS CodeBuild Local Builds
- Improve Build Performance and Save Time Using Local Caching in AWS CodeBuild
- Extending AWS CodeBuild with Custom Build Environments
- New – Building a Continuous Integration Workflow with Step Functions and AWS CodeBuild
- Using AWS Step Functions State Machines to Handle Workflow-Driven AWS CodePipeline Actions
- Complete CI/CD with AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, and AWS CodePipeline
- AWS CodePipeline product integrations
- Integrations with CodePipeline action types
- Implementing DevSecOps Using AWS CodePipeline
- Detect and react to changes in pipeline state with Amazon CloudWatch Events
- Building a Secure Cross-Account Continuous Delivery Pipeline
- Create a pipeline in CodePipeline that uses resources from another AWS account
- Integrating SonarCloud with AWS CodePipeline using AWS CodeBuild
- Amazon ECS and Load balancer types
- How do I set up dynamic port mapping for Amazon ECS?
- Building Windows containers with AWS CodePipeline and custom actions
- Easier way to control access to AWS regions using IAM policies
- AWS: Denies access to AWS based on the requested Region
- IAM Tutorial: Enable users to manage their credentials and MFA settings
- Integrating AWS CodeCommit with Jenkins
- Build specification reference for CodeBuild
- CodeDeploy AppSpec File reference
- How to Test and Debug AWS CodeDeploy Locally Before You Ship Your Code
- AWS CodeDeploy now supports linear and canary deployments for Amazon ECS
- Overview of Deployment Options on AWS
- Run code before terminating an EC2 Auto Scaling instance
- Implementing Microservices on AWS
- Micro-frontend Architectures on AWS
- Substituindo o Monólito com a AWS, Micro Frontends e Modyo
- Best practices for working with AWS Lambda functions
- Lambda quotas
- Provisioned Concurrency scaling example
- Reserved concurrency
- Can I have common environment variables for a group of Lambda functions?
- Announcing improved VPC networking for AWS Lambda functions
- Improved Testing on the AWS Lambda Console
- Understanding the Different Ways to Invoke Lambda Functions
- Serverless COBOL: Rejuvenating legacy code with open source software — Part 1
- Serverless COBOL: Rejuvenating legacy code with open source software — Part 2
- AWS SAM template anatomy
- Error handling in Step Functions
- Wait in Step Functions
- How to update AWS Service Catalog provisioned products to new product versions and report changes using AWS Step Functions, AWS Lambda, and Amazon Athena
- New – Local Mocking and Testing with the Amplify CLI
- Set up mock integrations in API Gateway
- Enable mock integration using the API Gateway console
- Deploying Serverless Applications Gradually
- Applying the Twelve-Factor App Methodology to Serverless Applications
- Deploying applications to Elastic Beanstalk environments
- Set up a Continuous Deployment Pipeline using AWS CodePipeline and AWS Elastic Beanstalk
- Docker basics for Amazon ECS
- Automating rollback of failed Amazon ECS deployments
- Build a Continuous Delivery Pipeline for Your Container Images with Amazon ECR as Source
- Amazon ECS Task Placement Strategies
- Private Registry Authentication for Tasks
- How Amazon ECS manages CPU and memory resources
- How can I allocate memory to tasks in Amazon ECS?
- Image scanning - Amazon ECR
- Scanning Docker Images for Vulnerabilities using Clair, Amazon ECS, ECR, and AWS CodePipeline
- How the Bottlerocket build system works
- Implementing DevSecOps Using AWS CodePipeline
- Building end-to-end AWS DevSecOps CI/CD pipeline with open source SCA, SAST and DAST tools
- How to Bake Open Source Security into Your AWS CodeBuild Pipeline
- Scanning images with Trivy in an AWS CodePipeline
- How to Bake Open Source Security into Your AWS CodeBuild Pipeline
- Integrating AWS CloudFormation security tests with AWS Security Hub and AWS CodeBuild reports
- Using AWS CodePipeline, AWS CodeBuild, and AWS Lambda for Serverless Automated UI Testing
- Fine-tuning blue/green deployments on application load balancer
- Tutorial: Creating a service using a blue/green deployment
- Automating Blue/Green Deployments of Infrastructure and Application Code using AMIs, AWS Developer Tools, & Amazon EC2 Systems Manager
- Automate OS Image Build Pipelines with EC2 Image Builder
- Use AWS CodeDeploy to Implement Blue/Green Deployments for AWS Fargate and Amazon ECS
- Performing Blue/Green Deployments with AWS CodeDeploy and Auto Scaling Groups
- Create immutable servers using EC2 Image Builder and AWS CodePipeline
- Task Definition Parameters
- Example task definitions
- Continuous Deployment to Amazon ECS using AWS CodePipeline, AWS CodeBuild, Amazon ECR, and AWS CloudFormation
- CI/CD on Amazon EKS using AWS CodeCommit, AWS CodePipeline, AWS CodeBuild, and FluxCD
- Continuous Deployment to Kubernetes using AWS CodePipeline, AWS CodeCommit, AWS CodeBuild, Amazon ECR and AWS Lambda
- AWS Fargate considerations
- Advanced environment customization with configuration files (.ebextensions)
- Clone an Elastic Beanstalk environment
- AWS X-Ray console
- Debugging with Amazon CloudWatch Synthetics and AWS X-Ray
- Integrating AWS X-Ray with other AWS services
- Running the X-Ray daemon on Amazon ECS
- Using ServiceLens to Monitor the Health of Your Applications
- CloudWatch Logs Insights query syntax
- CloudWatch Logs Insights Sample queries
- Announcing CloudTrail Insights: Identify and Respond to Unusual API Activity
- Creating a Trail for an Organization
- Manage custom AWS Config rules with remediations using conformance packs
- How to create custom AWS Config rules with AWS CodeStar
- New – Use CloudWatch Synthetics to Monitor Sites, API Endpoints, Web Workflows, and More
- Running AWS commands from Slack using AWS Chatbot
- Introducing AWS Chatbot: ChatOps for AWS
- IT Governance in a Dynamic DevOps Environment
- AWS Summit - DevOps Culture at Amazon
- AWS re:Invent 2018: Moving to DevOps the Amazon Way
- Applying the Twelve-Factor App Methodology to Serverless Applications
- AWS Solutions - Distributed Load Testing on AWS
- Use Serverspec for test-driven development of infrastructure code
Security Engineering on AWS
- AWS Security Checklist
- AWS Security Reference Architecture (AWS SRA)
- AWS Startup Security Baseline (AWS SSB)
- Privacy Features of AWS Services
- Shared Responsibility Model
- AWS Cloud Adoption Framework (CAF) - Security Perspective
- Navegando na conformidade com a LGPD na AWS
- NIST Cybersecurity Framework (CSF) - Aligning to the NIST CSF in the AWS Cloud
- AWS Services in Scope by Compliance Program
- PCI Compliance on AWS
- AWS Security Incident Response Guide
- How to approach threat modeling
- Provable Security - Automated Reasoning
- AWS IP Address Ranges
- IAM Best Practices
- Limitations on IAM Entities and Objects
- IAM JSON Policy Elements Reference
- IAM Policy Elements: Variables and Tags
- IAM: Policies and Permissions
- How to define least-privileged permissions for actions called by AWS services
- Create fine-grained session permissions using IAM managed policies
- Permissions Boundaries for IAM Entities
- How can I use permissions boundaries to limit the scope of IAM users and roles and prevent privilege escalation?
- Policy evaluation logic
- AWS Global Condition Context Keys
- Creating a Condition with Multiple Keys or Values
- How can I use IAM policy tags to restrict how an EC2 instance or EBS volume can be created?
- Using Service-Linked Roles
- Approaches for authenticating external applications in a machine-to-machine scenario
- AWS Services That Work with IAM
- Tighten S3 permissions for your IAM users and roles using access history of S3 actions
- Automate analyzing your permissions using IAM access advisor APIs
- Proving security at scale with automated reasoning
- How AWS uses automated reasoning to help you achieve security at scale (AWS Zelkova)
- IAM Access Analyzer - Por que habilitar?
- Access Analyzer policy validation
- Access Analyzer policy check reference
- Generate policies based on access activity
- How can I grant a user Amazon S3 console access to only a certain bucket or folder?
- Announcing the Golden AMI Pipeline
- Creating a Golden AMI Pipeline Integrated with Qualys for Vulnerability Assessments
- Getting Started with Automation
- Automation use cases
- Use AWS Fargate and Prowler to send security configuration findings about AWS services to Security Hub
- How can I use user data to replace a lost SSH key pair after the initial launch of my Amazon EC2 instance?
- How can I use Systems Manager automation to enforce that only IMDSv2 is used to access instance metadata from my Amazon EC2 instance?
- AWS re:Invent 2019: Security best practices for the Amazon EC2 instance metadata service (IMDSv2)
- Add defense in depth against open firewalls, reverse proxies, and SSRF vulnerabilities with enhancements to the EC2 Instance Metadata Service (IMDSv2)
- AWS re:Invent 2019: Deep dive on Amazon EBS
- Automating processes for handling and remediating AWS Abuse alerts
- I received an abuse report from AWS about my resources– what should I do?
- How do I report abuse of AWS resources?
- What to Do If You Inadvertently Expose an AWS Access Key
- How to Detect and Automatically Revoke Unintended IAM Access with Amazon CloudWatch Events
- AWS re:Invent 2018: How Nubank Automates Fine-Grained Security with IAM, AWS Lambda, & CI/CD
- AWS re:Invent 2017: Use Amazon EC2 Systems Manager to Perform Automated Resilience
- Enabling MFA Devices
- IAM Tutorial: Enable users to manage their credentials and MFA settings
- Using MFA delete
- AWS: Allows MFA-authenticated IAM users to manage their own credentials on the my security credentials page
- Using SSL/TLS to Encrypt a Connection to a DB Instance
- Best practices for securing sensitive data in AWS data stores
- What S3 bucket policy should I use to comply with the AWS Config rule s3-bucket-ssl-requests-only?
- Serving SSE-KMS encrypted content from S3 using CloudFront
- Analyzing encrypted S3 objects with Amazon Macie
- Amazon Macie - User Guide
- Using managed data identifiers in Amazon Macie
- Automate the archival and deletion of sensitive data using Amazon Macie
- Changing your Amazon S3 encryption from S3-Managed to AWS KMS
- What does Amazon S3 replicate?
- Applying best practices for securing sensitive data in Amazon RDS
- Performing SQL database client-side encryption for multi-Region high availability
- Monitor Amazon Aurora Database Activities Using DataSunrise Database Security
- How to use AWS Secrets Manager to rotate credentials for all Amazon RDS database types, including Oracle
- How to use AWS Secrets Manager to securely store and rotate SSH key pairs
- Automatically rotate IAM user access keys using AWS Secrets Manager
- Post-quantum TLS now supported in AWS KMS
- AWS re:Inforce 2019: How Encryption Works in AWS
- How to Remediate Amazon Inspector Security Findings Automatically
- Amazon Inspector agents
- GuardDuty EC2 finding types
- Amazon GuardDuty Partners
- Automated Response and Remediation with AWS Security Hub
- Enabling AWS Security Hub integration with AWS Chatbot
- AWS Security Hub - Managed insights
- How to Enable Custom Actions in AWS Security Hub
- Automating AWS CIS Benchmark Alerts and Remediation using Eventbridge
- Amazon EventBridge - Events from AWS services
- Managed Renewal for ACM's Amazon-Issued Certificates
- Why did my ACM certificate fail automatic renewal?
- Can I switch my ACM certificate’s validation method?
- What Is Amazon Kinesis Agent for Microsoft Windows?
- Tutorial: Sending VPC Flow Logs to Splunk Using Amazon Kinesis Data Firehose
- Scale Amazon Kinesis Data Streams with AWS Application Auto Scaling
- Troubleshooting Kinesis Data Streams Consumers
- Format Options for ETL Inputs and Outputs in AWS Glue
- How to Visualize and Refine Your Network’s Security by Adding Security Group IDs to Your VPC Flow Logs
- How to Use Nubeva with Amazon VPC Traffic Mirroring to Gain Decrypted Visibility of Your Network Traffic
- New – VPC Traffic Mirroring – Capture & Inspect Network Traffic
- Hands-on walkthrough of the AWS Network Firewall flexible rules engine – Part 1
- Hands-on walkthrough of the AWS Network Firewall flexible rules engine – Part 2
- Securing messages published to Amazon SNS with AWS PrivateLink
- Introducing AWS Client VPN to Securely Access AWS and On-Premises Resources
- AWS Client VPN - Scenarios and examples
- AWS Direct Connect + VPN
- How do I establish an AWS VPN over an AWS Direct Connect connection?
- Adding MACsec security to AWS Direct Connect connections
- How to add DNS filtering to your NAT instance with Squid
- Why is my presigned URL for an Amazon S3 bucket expiring before the expiration time that I specified?
- How to Enhance the Security of Sensitive Customer Data by Using Amazon CloudFront Field-Level Encryption
- Authorization@Edge using cookies: Protect your Amazon CloudFront content from being downloaded by unauthenticated users
- How do I use CloudFront to serve a static website hosted on Amazon S3?
- Reduce DDoS Risks Using Amazon Route 53 and AWS Shield
- AWS Shield Threat Landscape report is now available
- AWS re:Invent 2016: Mitigating DDoS Attacks on AWS: Five Vectors and Four Use Cases
- AWS WAF Security Automations
- Simplify Login with Application Load Balancer Built-in Authentication
- Application Load Balancers Now Support Multiple TLS Certificates With Smart Selection Using SNI
- Controlling and managing access to a REST API in API Gateway
- Introducing mutual TLS authentication for Amazon API Gateway
- Use API Gateway Lambda authorizers
- Building ADFS Federation for your Web App using Amazon Cognito User Pools
- What's the difference between Amazon Cognito user pools and identity pools?
- How do I set up an Amazon Cognito user pool as an authorizer on an API Gateway REST API?
- How to Use New Advanced Security Features for Amazon Cognito User Pools
- Adding Advanced Security to a User Pool
- How to Enable Server-Side LDAPS for Your AWS Managed Microsoft AD Directory
- Integrações: Active Directory, Azure AD com AWS IAM e AWS Single Sign-On
- Field Notes: Integrating a Multi-Forest Source Environment with AWS SSO
- Field Notes: Integrating Active Directory Federation Service with AWS Single Sign-On
- New AWS SSO gallery app simplifies Azure AD set-up with AWS
- AWS SSO and Azure AD integration - step by step
- How to use G Suite as an external identity provider for AWS SSO
- The Next Evolution in AWS Single Sign-On
- How to create and manage users within AWS Single Sign-On
- How to bulk import users and groups from CSV into AWS SSO
- AWS SSO - Supported applications
- Enabling custom identity broker access to the AWS console
- Identity federation in AWS
- SAML Security Cheat Sheet - OWASP
- Git pre-commit validation of AWS CloudFormation templates with cfn-lint
- How to Use AWS Config to Monitor for and Respond to Amazon S3 Buckets Allowing Public Access
- AWS Config: Checking for Compliance with New Managed Rule Options
- Conformance Pack Sample Templates
- AWS Config best practices
- Using AWS Service Catalog Constraints
- Building a React Frontend for Service Catalog with AWS Amplify
- AWS Landing Zone
- AWS Terraform Landing Zone (TLZ) Accelerator
- Introducing the Cloud Development Kit for Terraform (Preview)
- AWS Control Tower
- AWS Control Tower – Set up & Govern a Multi-Account AWS Environment
- Guardrail Reference
- AWS Solutions - Customizations for AWS Control Tower
- AWS Centralized Logging
- Vulnerability and Penetration Testing
- Penetration Testing in the AWS Cloud: What You Need to Know
- Standardized Architecture for PCI DSS on the AWS Cloud
- Tutorial: Blocking IP Addresses That Submit Bad Requests
- Architectures to exemplify digital signature and secure message transmission to the Brazilian Instant Payment System (PIX)
- Raising the bar on storage: How to improve your disaster recovery, ransomware prevention, and backup strategy
Running Containers on Amazon Elastic Kubernetes Service
- Amazon Elastic Kubernetes Service (EKS) Primer
- Containers na AWS - Immersion Day
- Introducing the AWS Controllers for Kubernetes (ACK)
- Deep Dive into firecracker-containerd
- 16 Benefícios do Amazon EKS para se considerar quando escolher sua opção de deploy
- Boas práticas de utilização de instâncias Spot no Amazon EKS
- Self-managed nodes
- Managed node groups
- The eksctl command line utility
- eksctl - The official CLI for Amazon EKS
- Managing Amazon EKS Clusters with Rancher
- Cluster VPC considerations
- Deploy a Kubernetes Application
- Operating a multi-regional stateless application using Amazon EKS
- How to build container images with Amazon EKS on Fargate
- Speeding up Windows container launch times with EC2 Image builder and image cache strategy
- How to capture application logs when using Amazon EKS on AWS Fargate
- Streaming logs from Amazon EKS Windows pods to Amazon CloudWatch Logs using Fluentd
- Using Amazon FSx for Windows File Server as persistent storage on Windows Containers
- Using the FSx for Lustre CSI Driver with Amazon EKS
- Fluent Bit for Amazon EKS on AWS Fargate is here
- Install SSM Agent on Amazon EKS worker nodes by using Kubernetes DaemonSet
- New – Use CloudWatch Synthetics to Monitor Sites, API Endpoints, Web Workflows, and More
- Visual monitoring of applications with Amazon CloudWatch Synthetics
- Getting started with AWS App Mesh and Amazon EKS
- Using sidecar injection on Amazon EKS with AWS App Mesh
- Amazon EKS networking
- Pod networking (CNI)
- Optimize IP addresses usage by pods in your Amazon EKS cluster
- De-mystifying cluster networking for Amazon EKS worker nodes
- Introducing security groups for pods
- Installing Calico on Amazon EKS
- Open Source Calico for Windows Containers on Amazon EKS
- Introducing OIDC identity provider authentication for Amazon EKS
- Kubernetes RBAC and IAM Integration in Amazon EKS using a Java-based Kubernetes Operator
- Installing aws-iam-authenticator
- Managing users or IAM roles for your cluster
- Why can't I connect to my Amazon EKS cluster?
- How do I resolve the "Your current user or role does not have access to Kubernetes objects on this EKS cluster" error in Amazon EKS?
- Troubleshooting IAM on EKS
- Windows Authentication on Amazon EKS Windows pods
- How to use ACM Private CA for enabling mTLS in AWS App Mesh
- How to use AWS Secrets & Configuration Provider with your Kubernetes Secrets Store CSI driver
- SkyScanner: Building Highly-Available, Multi-Region Kubernetes Clusters on 100% Amazon EC2 Spot
Arquiteturas de Referência & Tools
- AWS Quick Starts
- AWS Solutions
- Serverless Land
- AWS CloudFormation Templates
- AWS SAM - Serverless Application Repository
- AWS Samples
- AWS Cloud Design Patterns
- AWS Pricing Calculator
- AWS Simple Monthly Calculator
- The Amazon Builders' Library
- AWS Geek Cloud Diagrams & Notes
- AWS Global Infrastructure Network (3D Map)
- Explore AWS Outposts
- AWS Digital Training Provider Courses
- AWS re:Invent 2020 – Announcements From the News Blog
- [TOOLS] AWS Cloud Adoption Readiness Tool (CART)
- [TOOLS] Amazon ECR Public Gallery
- [TOOLS] Try sample applications on Amazon AppStream 2.0
- [TOOLS] AWS Sandbox Accounts for Events
- [TOOLS] AWS Support Tools
- [TOOLS] CloudPing
- [TOOLS] S3 Transfer Acceleration Speed Comparison Tool
- [TOOLS] AWS Global Accelerator - Speed Comparison
- [TOOLS] Overlapping CIDRs using AWS Transit Gateway in VPC and NAT Instances
- [TOOLS] Amazon EC2 Instance Selector
- [TOOLS] Amazon WorkSpaces - Connection Health Check
- [TOOLS] Web Identity Federation Playground
- [TOOLS] Service Control Policy examples
- [TOOLS] AWS IAM Identity Center Sync
- [TOOLS] Amazon Cognito Passwordless Auth
- [TOOLS] AWS Policy Generator
- [TOOLS] IAM Access Key-Auto rotation
- [TOOLS] AWS Organizations Alternate Contact Manager
- [TOOLS] Temporary Elevated Access Tool
- [TOOLS] AWS Elastic Load Balancer Demos
- [TOOLS] AWS Health Aware
- [TOOLS] AWS Deployment Framework
- [TOOLS] Trusted Advisor Tools
- [TOOLS] Trusted Advisor Exposed Keys CloudWatch Event Monitor
- [TOOLS] AWS Incident Response Playbook Samples
- [TOOLS] Macie Findings integration with Slack Channel
- [TOOLS] Git-Secrets
- [TOOLS] Self-Service Security Assessment tool
- [TOOLS] AWS CloudSaga - Simulate security events in AWS
- [TOOLS] AWS Secure Environment Accelerator
- [TOOLS] AWS Security Hub Cross-Account Controls Disabler
- [TOOLS] Amazon Guardduty Tester
- [TOOLS] SIEM on Amazon Elasticsearch Service
- [TOOLS] AWS WAF Operations Dashboards
- [TOOLS] Amazon S3 Find and Forget
- [TOOLS] Multi-Attach EBS volumes across multiple hosts using GFS2
- [TOOLS] Data Transfer Hub - S3 Plugin
- [TOOLS] AWS Data Replication Hub
- [TOOLS] AWS Data Wrangler
- [TOOLS] AWS Dev Fabric for SQL Server
- [TOOLS] Simple Database Archiving Solution
- [TOOLS] Snapshot Tool for Amazon Aurora
- [TOOLS] Amazon DynamoDB Encryption Client for Python
- [TOOLS] Registry of Open Data on AWS
- [TOOLS] Karpenter for Kubernetes
- [TOOLS] Bootstrapping clusters with EKS Blueprints
- [TOOLS] Nextcloud Container Deployment on AWS - Serverless
- [TOOLS] AWS SSM Chaos Runner
- [TOOLS] AWS Amplify Identity Broker with Cognito
- [TOOLS] AWS IAM Authenticator for Kubernetes
- [TOOLS] AWS ParallelCluster - HPC for the Cloud
- [TOOLS] Operational Management: Inventory, Patching, and Compliance
- [TOOLS] AWS Automated Inventory (aws-auto-inventory)
- [TOOLS] Awesome CloudFormation
- [TOOLS] AWS CloudFormation Guard
- [TOOLS] TaskCat
- [TOOLS] AWS CloudFormation Template Flip
- [TOOLS] AWS Device Farm Sample App for Android
- [TOOLS] Amazon CloudFront Secure Static Website
- [TOOLS] SES Event Processing
- [TOOLS unofficial] The Open Guide to Amazon Web Services
- [TOOLS unofficial] JMESPath
- [TOOLS unofficial] JMESPath Terminal
- [TOOLS unofficial] AWSume: AWS Assume Made Awesome
- [TOOLS unofficial] AWS IP Ranges
- [TOOLS unofficial] Cloudcraft - Create smart AWS diagrams
- [TOOLS unofficial] Awesome SNS
- [TOOLS unofficial] The Grinder
- [TOOLS unofficial] Apache JMeter
- [TOOLS unofficial] Kubernetes instance calculator
- [TOOLS unofficial] Kubecost - Cost Model
- [TOOLS unofficial] kubectl
- [TOOLS unofficial] eksctl
- [TOOLS unofficial] Rancher
- [TOOLS unofficial] Harbor
- [TOOLS unofficial] Docker Samples
- [TOOLS unofficial] Dockerfile-lint
- [TOOLS unofficial] Periodic Table of DevOps
- [TOOLS unofficial] CloudFormation Lint: CFN Nag
- [TOOLS unofficial] CloudFormation Lint: CFripper
- [TOOLS unofficial] Checkov - Prisma Cloud
- [TOOLS unofficial] OPA - Open Policy Agent
- [TOOLS unofficial] IAMSpy - AWS IAM
- [TOOLS unofficial] Principal Mapper (PMapper) - AWS IAM
- [TOOLS unofficial] AWS SSO Util
- [TOOLS unofficial] AWS Transfer for SFTP - Azure AD
- [TOOLS unofficial] Timber - Logging appender for AWS S3
- [TOOLS unofficial] AWS CloudFront CDN Edge Locations
- [TOOLS unofficial] Lambda Load Testing
- [TOOLS unofficial] AWS Lambda Power Tuning
- [TOOLS unofficial] Awesome Honeypots
- [TOOLS unofficial] Bees with Machine Guns!
- [TOOLS unofficial] Modern Honey Network
- [TOOLS unofficial] OWASP ZAP
- [TOOLS unofficial] ScoutSuite
- [TOOLS unofficial] AWS Sec Monitor
- [TOOLS unofficial] Prowler - AWS Security Tool
- [TOOLS unofficial] Rhino Security Labs - Pacu
- [TOOLS unofficial] Rhino Security Labs - CloudGoat
- [TOOLS unofficial] Rhino Security Labs - Cloud Container Attack
- [TOOLS unofficial] Clara anti-malware for S3 buckets
- [TOOLS unofficial] Cloudsplaining - IAM Security Assessment tool
- [TOOLS unofficial] CrowdStrike Cloud-AWS
- [TOOLS unofficial] Lithnet Password Protection for Active Directory (LPP)
- [TOOLS unofficial] Gophish - Open-Source Phishing Framework
- [TOOLS unofficial] aws-cloud-mindmaps
- [TOOLS unofficial] Console Recorder for AWS
- [TOOLS unofficial] Netflix ConsoleMe
- [TOOLS unofficial] Netflix Weep
- [TOOLS unofficial] Twemproxy (nutcracker)
- [TOOLS unofficial] alterNAT
- [TOOLS unofficial] MySQL Samples
- [TOOLS unofficial] Static Demo - 2048
- [TOOLS unofficial] Cost report generator
- [TOOLS unofficial] aws-nuke - cleanup AWS Account
- [TOOLS unofficial] Fido: A PowerShell download script for Windows ISOs
- [TOOLS unofficial] Git Repository Sync Action
Workshops & Laboratórios
- [LABS] AWS Qwiklabs
- [LABS] AWS Well-Architected Labs
- [LABS] VMware Cloud on AWS
- [LABS] Break a Monolith Application into Microservices
- [LABS] Building CI/CD with Blue/Green and Canary Deployments on EKS using CDK
- [Workshop] AWS Workshops
- [Workshop] AWSome AWS Workshops
- [Workshop] AWS Well-Architected Labs
- [Workshop] Modelo de Maturidade de Segurança da AWS
- [Workshop] AWS Cloud Champion
- [Workshop] Networking Workshop - Transit Gateway and Traffic Mirroring
- [Workshop] Amazon EC2 Spot Instances Workshop
- [Workshop] Amazon CloudWatch
- [Workshop] SSM & Config
- [Workshop] Building Event-Driven Architectures on AWS
- [Workshop] Amazon FSx Workshop
- [Workshop] SQL Server Immersion Day
- [Workshop] Windows Containers on AWS
- [Workshop] Amazon ECS Workshop for AWS Fargate
- [Workshop] Amazon EKS Workshop
- [Workshop] Amazon Lightsail Workshop
- [Workshop] Amazon DynamoDB Labs
- [Workshop] Amazon Aurora Labs for MySQL
- [Workshop] Generate Content with Lambda@Edge
- [Workshop] AWS EMP Workshop
- [Workshop] AWS Database Migration Workshop
- [Workshop] CloudEndure Migration Factory Workshop
- [Workshop] CloudEndure Deep Dive - Workshop
- [Workshop] Disaster Recovery/Recuperação de Desastres na AWS
- [Workshop] Migration Immersion Day
- [Workshop] Migration and Modernization Workshop Guide
- [Workshop] Kynesis Streaming Analytics Workshop
- [Workshop] Identity: Choose Your Own SAML Adventure
- [Workshop] AWS Multi-Account Setup
- [Workshop] Landing Zone Workshop
- [Workshop] AWS Service Catalog Tools Workshop
- [Workshop] AWS Security Workshops
- [Workshop] Security Workshops - Permission Boundaries: How to Truly Delegate Permissions on AWS
- [Workshop] Security Workshops - Data Protection, Detection, Identity, Threat Detection
- [Workshop] AWS Protecting Workloads Workshops
- [Workshop] Getting Hands on with Amazon GuardDuty
- [Workshop] Scaling threat detection and response in AWS
- [Workshop] Integrating security into your container pipeline
- [Workshop] DevSecOps with Snyk
- [Workshop] DevSecOps on AWS
- [Workshop] CI/CD workshop for Amazon ECS
- [Workshop] Gaining operational insights with AIOps using Amazon DevOps Guru
- [Workshop] Windows on AWS
- [Workshop] Running Microsoft Workloads on AWS Immersion Day
- [Workshop] Amazon RDS for SQL Server Workshop
- [Workshop] AWS Cloud Development Kit (CDK) Workshop
- [Workshop] Learn Python On AWS Workshop
- [Workshop unofficial] Welcome to the flAWS challenge
- [Workshop unofficial] Welcome to the flAWS 2 challenge
- [Workshop unofficial] Play with Docker
- [Workshop unofficial] Hello Kubernetes w/ Minikube
- [SLIDES] Technical Essentials on AWS
- [SLIDES] AWS Business Essentials Day
- [MATERIAL] Advanced Architecting on AWS- Online Course Supplement
- [EBOOK] Hands-On AWS Penetration Testing with Kali Linux
- [FILES] Scripts Demo AWS EKS Course
- [FILES] Security Engineering on AWS - script lab 2
- [FILES] Developing on AWS - Additional Resources
- [FILES] Developing on AWS - Solutions for Labs
- [FILES] AWSome Days - Additional Resources
- [VIDEO-LABS] AWS Technical Essentials
- [VIDEO-LABS] AWS Cloud Practitioner Essentials
- [VIDEO-LABS] AWS Security Essentials
- [VIDEO-LABS] Well-Architected Best Practices
- [VIDEO-LABS] Architecting on AWS - v6.8
- [VIDEO-LABS] Architecting on AWS - v7.0
- [VIDEO-LABS] Advanced Architecting on AWS - v2.8
- [VIDEO-LABS] Advanced Architecting on AWS - v3.0
- [VIDEO-LABS] Cloud Financial Management for Builders
- [VIDEO-LABS] Systems Operations on AWS - v3.3
- [VIDEO-LABS] Systems Operations on AWS - v4.0
- [VIDEO-LABS] Developing on AWS
- [VIDEO-LABS] Developing on AWS - v4.0
- [VIDEO-LABS] Advanced Developing on AWS
- [VIDEO-LABS] DevOps Engineering on AWS
- [VIDEO-LABS] Security Engineering on AWS
- [VIDEO-LABS] Planning and Designing Database on AWS
- [VIDEO-LABS] Big Data on AWS
- [VIDEO-LABS] Building Data Analytics Solutions Using Amazon Redshift
- [VIDEO-LABS] Building Data Lake on AWS
- [VIDEO-LABS] Building Batch Data Analytics Solutions for AWS
- [VIDEO-LABS] Running Containers on Amazon EKS
- [VIDEO-LABS] Deep Learning on AWS
- [VIDEO-LABS] Moving to AWS Serverless
- [VIDEO-LABS] Migrating to AWS - v2.0
- [VIDEO-LABS] IoT in Scale: IoT Solution using AWS Services
[DISCLAIMER] Links e materiais disponibilizados como conteúdo adicional para os estudos nos treinamentos da AWS. As informações aqui inseridas são mantidas por mim mesmo, e não expressam nenhuma informação oficial por parte da AWS; mesmo que em sua maioria sejam artigos e blog posts oficiais da Amazon Web Services.