brunokktro/auladobruno

[DISCLAIMER] Links e materiais disponibilizados como conteúdo adicional para os estudos nos treinamentos da AWS. As informações aqui inseridas são mantidas por mim mesmo, e não expressam nenhuma informação oficial por parte da AWS; mesmo que em sua maioria sejam artigos e blog posts oficiais da Amazon Web Services.

Dicas de estudo para as certificações

• Escolha sua carreira de certificações e organize o seu roteiro de aprendizado
• Revise o arquivo Exam Guide do respectivo exame de certificação
• Defina uma estratégia eficiente de estudos. Há algumas técnicas bem interessantes como o Retrieval, Spaced e o Elaboration
• Faça um treinamento oficial, presencial ou remoto, ministrado pela AWS. Veja mais em aws.training
• Caso vá fazer o treinamento oficial, já prepare seu ambiente para materiais e labs no Class Prep
• Organize um roteiro sequencial de estudos, usando os Ramp-Up Guides
• Faça laboratórios e ganhe experiência prática, com os Tutoriais de Hands-On
• Revise o arquivo de Sample Questions do respectivo exame de certificação
• Revise os whitepapers e FAQs dos serviços que estão no escopo do exame de certificação
• Assista os vídeos da série "This is My Architecture", com exemplos de casos reais dos clientes AWS
• Faça um treinamento oficial da AWS com foco na preparação do exame; através dos cursos Exam Readiness
• Acompanhe nossos eventos e webinars da comunidade AWS em LATAM, pois sempre há conteúdo de referência para ajudar nos estudos
• Faça um Practice Exam oficial (simulado)
• Agende seu exame de certificação na Person Vue
• Adicione 30 minutos a mais em seu exame com o ESL +30 MINUTES (disponível para não-nativos de língua inglesa)
• Seja um certificado AWS!
• Aproveite os benefícios concedidos só a quem tem certificações AWS

Architecting on AWS

• AWS Cloud Services (Catalog)
• AWS Global Cloud Infrastructure Map
• AWS Global Infrastructure Regions
• Learn how we secure AWS data centers
• Compute Abstractions on AWS: A Visual Story
• AWS Well-Architected - Learn, measure, and build using architectural best practices
• AWS Well-Architected Framework
• Financial Services Industry Lens - AWS Well-Architected Framework
• AWS Well-Architected Tool – Review Workloads Against Best Practices
• AWS Well-Architected Tool – DEMO
• Nine Ways to Reduce Your AWS Bill
• Desmistificando as 9 formas de reduzir custos na AWS
• Conhecendo um pouco mais sobre o Graviton2
• Amazon S3 + Amazon CloudFront: A Match Made in the Cloud
• How to set up a CloudFront distribution for Amazon S3
• Overview of Managing Access on S3
• Diving Deep on S3 Consistency
• Amazon S3 Path Deprecation Plan – The Rest of the Story
• Amazon EC2 Instance Types
• Spot Instance Advisor
• Running high-scale web applications on Amazon EC2 Spot Instances
• Amazon EC2 Auto Scaling Lifecycle Hooks
• Elastic Load Balancing and Amazon EC2 Auto Scaling
• Amazon EBS Volume Types
• Recovering files from an Amazon EBS volume backup
• New – Multi-Attach for Provisioned IOPS (io1) Amazon EBS Volumes
• Can I use EBS Multi-Attach volumes to enable multiple EC2 instances to simultaneously access a standard file system?
• Working with Aurora Multi-Master Clusters
• Amazon Aurora Backtrack – Turn Back Time
• Amazon DynamoDB - Choosing Initial Throughput Settings
• Best Practices for Designing and Architecting with DynamoDB
• Best Practices for Designing and Using Partition Keys Effectively
• Building resiliency at scale at Tinder with Amazon ElastiCache
• How to work with Cluster Mode on Amazon ElastiCache for Redis
• Comparing Redis and Memcached
• Common ElastiCache Use Cases and How ElastiCache Can Help
• Introducing Amazon Elasticsearch Service as a target in AWS Database Migration Service
• Migration Complete – Amazon’s Consumer Business Just Turned off its Final Oracle Database
• Scaling Your Amazon RDS Instance Vertically and Horizontally
• Right-size Amazon RDS instances at scale based on Oracle performance metrics
• Using in-Region read replicas in Amazon RDS for SQL Server
• New – AWS Storage Gateway Hardware Appliance
• Expanded availability and streamlined ordering of the AWS Storage Gateway Hardware Appliance
• Using static IP addresses for Application Load Balancers
• New – Application Load Balancer Simplifies Deployment with Weighted Target Groups
• How to securely publish Internet applications at scale using Application Load Balancer and AWS PrivateLink
• Debugging tool for network connectivity from Amazon VPC
• Multiple Region Multi-VPC Connectivity
• Working with Direct Connect Gateways
• AWS Direct Connect Partners
• How do I provision an AWS Direct Connect connection?
• Building a Serverless Dynamic DNS System with AWS
• How do I create an IAM policy to control access to Amazon EC2 resources using tags?
• Simplify granting access to your AWS resources by using tags on AWS IAM users and roles
• Writing IAM Policies: Grant Access to User-Specific Folders in an Amazon S3 Bucket
• IAM Policies and Bucket Policies and ACLs! Oh, My! (Controlling Access to S3 Resources)
• Now Create and Manage AWS IAM Roles More Easily with the Updated IAM Console
• Guidelines for protecting your AWS account while using programmatic access
• Creating a Billing Alarm to Monitor Your Estimated AWS Charges
• How to better monitor your custom application metrics using Amazon CloudWatch Agent
• CloudWatch Search Expression Examples
• Upgrading to Amazon EventBridge from Amazon CloudWatch Events
• CloudWatch Logs Subscription Consumer + Elasticsearch + Kibana Dashboards
• Running Scripts from GitHub and Amazon S3
• Validating AWS CloudFormation Templates
• Amazon CloudFront – Support for Dynamic Content
• Amazon CloudFront Dynamic Content Delivery
• Can I use a single CloudFront web distribution to serve content from multiple origins using multiple behaviors?
• Implementation Considerations - Learn Caching Design Patterns
• Caching Content Based on Query String Parameters
• Amazon API Gateway - Enabling API caching to enhance responsiveness
• Powering Gaming Applications with Amazon DynamoDB
• Amazon DynamoDB: Gaming use cases and design patterns
• AWS Serverless Application Model
• Introducing AWS SAM Pipelines: Automatically generate deployment pipelines for serverless applications
• Firecracker – Lightweight Virtualization for Serverless Computing
• Video on Demand on AWS
• Cross-Region Backups
• Chaos Monkey
• How do I close my AWS account?

Advanced Architecting on AWS

• Getting started with tag policies
• AWS Config: Checking for Compliance with New Managed Rule Options
• AWS re:Invent 2019: Advanced VPC design and new capabilities for Amazon VPC
• Route 53 - Choosing between alias and non-alias records
• New – Application Load Balancing via IP Address to AWS & On-Premises Resources
• Amazon VPC for On-Premises Network Engineers – Part 1
• Amazon VPC for On-Premises Network Engineers – Part 2
• How do I increase my security group limits in Amazon VPC?
• Simplify network routing and security administration with VPC Prefix Lists
• Overlay Multicast in Amazon Virtual Private Cloud
• How to run Schneider Electric’s Responder OMS using AWS Transit Gateway multicast
• Connecting Networks with Overlapping IP Ranges
• Transit Gateway vs VPC peering
• Building a global network using AWS Transit Gateway Inter-Region peering
• Simplify SD-WAN connectivity with AWS Transit Gateway Connect
• Building a Scalable and Secure Multi-VPC AWS Network Infrastructure
• Introducing Bring Your Own IP (BYOIP) for Amazon VPC
• Configurable Reverse DNS for Amazon EC2’s Elastic IP Addresses
• How can I set up Active-Passive failover with geolocation records in Route 53?
• Using redundant Site-to-Site VPN connections to provide failover
• Scaling VPN throughput using AWS Transit Gateway
• How do I create a certificate-based VPN using AWS Site-to-Site VPN?
• Configurando uma conexão VPN site a site entre a AWS e o Azure
• Improve VPN Network Performance of AWS Hybrid Cloud with Global Accelerator
• Configure and Deploy AWS PrivateLink
• AWS PrivateLink Update – VPC Endpoints for Your Own Applications & Services
• Integrating AWS Transit Gateway with AWS PrivateLink and Amazon Route 53 Resolver
• Interface endpoint properties and limitations (PrivateLink Limitations)
• How can I use AWS RAM to share Route 53 Resolver rules across multiple VPCs and AWS accounts?
• Centralized DNS management of hybrid cloud with Amazon Route 53 and AWS Transit Gateway
• How can I configure VPN as a backup for my AWS Direct Connect connection?
• How do I configure Direct Connect and VPN failover with Transit Gateway?
• VPN connection as a backup to AWS DX connection example
• How to order AWS Direct Connect using the Equinix Fabric Portal
• How do I provision a new link aggregation group (LAG) using AWS Direct Connect connections?
• What’s the difference between a hosted virtual interface (VIF) and a hosted connection?
• Setting up AWS Direct Connect gateway to route DX traffic to any AWS Region
• AWS Solution – Transit VPC
• How to integrate third-party firewall appliances into an AWS environment
• New – VPC Ingress Routing – Simplifying Integration of Third-Party Appliances
• VPC sharing: A new approach to multiple accounts and VPC management
• Using VPC Sharing for a Cost-Effective Multi-Account Microservice Architecture
• Securing VPCs Egress using IDS/IPS leveraging Transit Gateway
• Deployment models for AWS Network Firewall
• Centralized inspection architecture with AWS Gateway Load Balancer and AWS Transit Gateway
• Deploy an Elastic HPC Cluster
• Securely extend and access on-premises Active Directory domain controllers in AWS
• How to Connect Your On-Premises Active Directory to AWS Using AD Connector
• Integrando o AWS Directory Service com o AWS Console – AD Connector
• AWS AD Connector – o curioso caso de falha em localização de objetos
• How to migrate your on-premises domain to AWS Managed Microsoft AD using ADMT
• How to Switch Easily Between AWS Accounts by Using the AWS Management Console and AWS Directory Service
• How do I use the AWS CLI to perform a multipart upload of a file to Amazon S3?
• Building and Maintaining an Amazon S3 Metadata Index without Servers
• How can I check the integrity of an object uploaded to Amazon S3?
• Performance Design Patterns for Amazon S3
• S3 Select and Glacier Select – Retrieving Subsets of Objects
• AWS Snowball Device Differences
• Best Practices for the AWS Snowball Edge Device
• Enable password authentication for AWS Transfer for SFTP using AWS Secrets Manager
• Optimizing WordPress performance with Amazon EFS
• Use the Serverless Developer Portal to Catalog Your API Gateway APIs
• How to use service control policies to set permission guardrails across accounts in your AWS Organization
• Manage Software Licenses with AWS License Manager – DEMO
• AWS RAM - Shareable AWS resources
• AWS RAM managed permissions
• Managing AWS resources across multiple accounts and Regions using AWS Systems Manager Automation
• How Moody’s uses AWS Systems Manager to patch servers across multiple cloud providers
• Centralized multi-account and multi-Region patching with AWS Systems Manager Automation
• Understanding Burst vs. Baseline Performance with Amazon RDS and GP2
• Scaling Based on Amazon SQS
• Under the Hood: AWS CodeDeploy and Auto Scaling Integration
• Elastic Beanstalk - Advanced environment customization with configuration files (.ebextensions)
• New – Amazon Connect and Amazon Lex Integration
• Integrating Amazon SES with Microsoft Exchange
• Integrating Amazon SES with your existing email server
• How to use domain with Amazon SES in multiple accounts or regions
• AWS Server Migration Service – Server Migration to the Cloud Made Easy
• How to upgrade your legacy Windows applications to new versions of Windows Server without refactoring
• Importing Data to an Amazon RDS MySQL or MariaDB DB Instance with Reduced Downtime
• Strategies for Migrating Oracle Databases to AWS
• Migrating Oracle databases with near-zero downtime using AWS DMS
• Validating database objects after migration using AWS SCT and AWS DMS
• Schema Conversion Tool blog series: Introducing new features in build 613
• Enable large-scale database migrations with AWS DMS and AWS Snowball
• Query any data source with Amazon Athena’s new federated query
• Using ‘athena-express’ to Simplify SQL Queries on Amazon Athena
• Harmonize, Query, and Visualize Data from Various Providers using AWS Glue, Amazon Athena, and Amazon QuickSight
• Developing AWS Glue ETL jobs locally using a container
• Setting Up AWS Lake Formation
• Implicit Lake Formation Permissions
• Blueprints and Workflows in Lake Formation
• Security in AWS Lake Formation
• Using AWS Cost Explorer to analyze data transfer costs
• Best practices for resizing and automatic scaling in Amazon EMR
• Monitor and Optimize Analytic Workloads on Amazon EMR with Prometheus and Grafana
• DynamoDB Streams Use Cases and Design Patterns
• My DynamoDB table is being throttled
• AWS Outposts Now Available – Order Yours Today!
• Deploy a highly available AWS Storage Gateway on a VMware vSphere cluster
• How can I set up VMware High Availability on my file gateway?
• Caching Overview on AWS
• Deliver Your App’s Dynamic Content Using Amazon CloudFront – Getting Started Template
• Lambda@Edge Example Functions
• Introducing CloudFront Functions – Run Your Code at the Edge with Low Latency at Any Scale
• Using Amazon CloudWatch Lambda Insights to Improve Operational Visibility
• Amazon Builder's Library - Caching challenges and strategies
• How to set up an outbound VPC proxy with domain whitelisting and content filtering
• WordPress: Best Practices on AWS
• AWS Best Practices for DDoS Resiliency
• AWS Fault Injection Simulator – Use Controlled Experiments to Boost Resilience
• Deploy a dashboard for AWS WAF with minimal effort
• WAF - Preconfigured Rules & Tutorials
• How do I block common attacks with AWS WAF?
• AWS Managed Rules rule groups list
• WAF Sandwich
• Best practices for using AWS WAF CAPTCHA
• AWS WAF CAPTCHA challenge puzzles
• How AWS WAF CAPTCHA works
• AWS Centralized WAF and VPC Security Group Management
• Subscribe to AWS Public IP Address Changes via Amazon SNS
• AWS Solutions - AWS Perspective
• Create real-time clickstream sessions and run analytics with Amazon Kinesis Data Analytics, AWS Glue, and Amazon Athena

Migrating to AWS

• AWS Ramp-Up Guide: Migration
• AWS Foundations: Strategies and Tools to Perform Large-Scale Migrations (Portuguese)
• Using a Cloud Center of Excellence (CCOE) to Transform the Entire Enterprise
• How to Create a Cloud Center of Excellence in Your Enterprise
• The Journey Toward Cloud-First & the Stages of Adoption
• Cloud Enablement Engine: A Practical Guide
• Mobilize your organization to accelerate large-scale migrations
• 4 Dos and Don’ts When Using the Cloud to Experiment
• AWS Cloud Adoption Framework (CAF) 3.0 is Now Available
• Yes, You Can Migrate Your Mainframe to the Cloud
• Migrating AS/400 and IBM i Applications to AWS with Infinite
• Migration governance
• Organizing Your AWS Environment Using Multiple Accounts
• What is a landing zone?
• Customizations for AWS Control Tower
• Control AWS resources available to your users using AWS Service Catalog
• Security, risk, and compliance
• Migration Evaluator: Agentless Collector Installation Walkthrough
• TSO Logic: Software Demo
• Migration Hub Import
• Amazon EC2 instance recommendations
• Assessing Migration Readiness
• Perform Discovery and Then Migrate
• Migrate applications using AWS SMS
• Migrating Azure VM to AWS using AWS SMS Connector for Azure
• Containerizing a Java application on Linux
• Importing a disk as a snapshot using VM Import/Export
• How to Use the New AWS Application Migration Service for Lift-and-Shift Migrations
• Avoid affecting your production environment during migration with AWS Application Migration Service
• Account and VPC Considerations for VMware Cloud on AWS
• VMware Cloud on AWS - Network Design Fundamentals
• VMware Cloud on AWS - NSX-T Networking Concepts
• VMware Cloud on AWS: Advanced Networking and Security with NSX-T SDDC
• Get VMware Server Information into AWS Migration Hub Using the Agentless AWS Discovery Connector
• Migrating ASP.NET applications to Elastic Beanstalk with Windows Web Application Migration Assistant
• AWS App2Container – A New Containerizing Tool for Java and .NET Applications
• Open sourcing the Porting Assistant for .NET
• AWS Database Migration Service Automation Framework
• AWS Database Migration Service Best Practices
• Migrating Your Databases to Amazon Aurora
• Windows to Linux replatforming assistant for Microsoft SQL Server Databases
• Decomposing monoliths into microservices
• Containers & microservices
• Five keys to a successful SAP migration on AWS

Cloud Financial Management for Builders

• Cloud Economics Center
• Cloud economics: The value of a TCO assessment
• Cloud, CapEx, and OpEx: Reframing the Conversation
• AWS Well-Architected Framework (PDF version)
• Cost Optimization
• Cost Optimization Pillar - AWS Well-Architected Framework
• How AWS Pricing Works: AWS Pricing Overview
• TCO and cost optimization: Best practices for managing usage on AWS
• Use Tagging to Organize Your Environment and Drive Accountability
• Tagging Best Practices: Implement an Effective AWS Resource Tagging Strategy
• Standardize Names for AWS Resources
• Grant permission to tag resources during creation
• Service Authorization Reference - list of the actions, resources, and condition keys that are supported by each AWS service
• Visualizing AWS Config data using Amazon Athena and Amazon QuickSight
• Query and Visualize AWS Cost and Usage Data Using Amazon Athena and Amazon QuickSight
• How do I ingest and visualize the AWS Cost and Usage Report (CUR) into Amazon QuickSight?
• Introducing AWS Application Cost Profiler, offering user-based cost data of shared AWS resources
• Instance purchasing options
• Amazon EC2 Reserved Instances and Other AWS Reservation Models
• Amazon EC2 Reserved Instance Marketplace
• How Reserved Instances are applied (Normalization factor)
• How Spot Instances Work
• Avoiding unexpected charges
• Volume discounts
• Tracking your AWS Free Tier usage
• IAM Tutorial: Delegate access to the billing console
• AWS Trusted Advisor best practice checklist
• It just got easier to discover and compare EC2 instance types
• Optimizing your cost with Rightsizing Recommendations
• Right Sizing: Provisioning Instances to Match Workloads
• CloudWatch Logs agent reference
• Collecting metrics and logs from Amazon EC2 instances and on-premises servers with the CloudWatch agent
• How can I see why I was charged for CloudWatch usage, and then how can I reduce future charges?
• Lowering costs and focusing on our customers with Amazon CloudWatch embedded custom metrics
• Getting Started with Amazon EC2 Spot Instances
• Amazon EMR on EC2 Spot Instances
• Optimizing for cost, availability and throughput by selecting your AWS Batch allocation strategy
• Cost Optimize your Jenkins CI/CD pipelines using EC2 Spot Instances
• Optimizing and Scaling Machine Learning Training with Managed Spot Training for Amazon SageMaker
• Spot Fleet example configurations
• Spot Instance interruptions
• Spot Integration with Other AWS Services
• EC2 Fleet – Manage Thousands of On-Demand and Spot Instances with One Request
• Maintaining a Fixed Number of Instances in Your Auto Scaling Group
• Manual Scaling for Amazon EC2 Auto Scaling
• Scheduled Scaling for Amazon EC2 Auto Scaling
• Dynamic Scaling for Amazon EC2 Auto Scaling
• How can I update yum or install packages without internet access on my EC2 instances running Amazon Linux 1 or Amazon Linux 2?
• How do I enable the EPEL repository for my Amazon EC2 instance running CentOS, RHEL, or Amazon Linux?
• How can we regularly update a disconnected system (A system without internet connection)?
• AMI billing information fields
• Microsoft Licensing on AWS
• Simplified Bring-Your-Own-License experience using AWS License Manager
• Simplify your BYOL Experience with Dedicated Host Management Capabilities in AWS License Manager
• Best practices for working with AWS Lambda functions
• Comparing NAT gateways and NAT instances
• Overview of Data Transfer Costs for Common Architectures
• Cloud Storage on AWS
• Overview of managing clusters in Amazon Redshift
• What is a landing zone?
• Cost Optimisation Best Practices
• Optimizing the cost of serverless web applications
• How do you optimize your Serverless application’s costs?
• 10 Things Serverless Architects Should Know

Planning and Designing Databases on AWS

• Learning Path - Databases
• Six free courses for building modern apps with purpose-built databases
• Hands-On Tutorials - Move to managed databases
• Databases on AWS: The Right Tool for the Right Job
• Amazon RDS Multi-AZ Deployments
• Amazon RDS Read Replicas
• How can I distribute read requests across multiple Amazon RDS read replicas?
• How can I perform write operations to my Amazon RDS for MariaDB or MySQL DB instance read replica?
• Implementing a disaster recovery strategy with Amazon RDS
• Best storage practices for running production workloads on hosted databases with Amazon RDS or Amazon EC2
• Applying best practices for securing sensitive data in Amazon RDS
• Securing data in Amazon RDS using AWS KMS encryption
• Sharding with Amazon Relational Database Service
• Scaling Your Amazon RDS Instance Vertically and Horizontally
• Using AWS Cost Management products to help save costs on Amazon RDS Reserved Instances
• IAM database authentication for MySQL and PostgreSQL
• Sharing a DB snapshot
• Backing up and restoring an Amazon RDS DB instance
• Amazon RDS Under the Hood: Single-AZ instance recovery
• Amazon RDS Under the Hood: Multi-AZ
• Monitoring an Amazon RDS DB instance
• Enhanced Monitoring
• Using Amazon RDS event notification
• Amazon RDS database log files
• How do I enable and monitor logs for an Amazon RDS MySQL DB instance?
• Architecting for database encryption on AWS
• Migrate TDE-enabled SQL Server databases to Amazon RDS for SQL Server
• Securing data in Amazon RDS using AWS KMS encryption
• Troubleshooting for Amazon RDS
• Monitoring with the Performance Insights dashboard
• Best storage practices for running production workloads on hosted databases with Amazon RDS or Amazon EC2
• Multi-AZ deployments for Amazon RDS for Microsoft SQL Server
• Multi-region SQL Server deployment using distributed availability groups
• Amazon DynamoDB global tables
• How to use Amazon DynamoDB global tables to power multiregion architectures
• Amazon DynamoDB auto scaling: Performance and cost optimization at any scale
• New – Export Amazon DynamoDB Table Data to Your Data Lake in Amazon S3, No Code Writing Required
• I'm using an on-demand DynamoDB table, but I'm still getting throttled. Why?
• Optimize Amazon DynamoDB scan latency through schema design
• How Amazon DynamoDB adaptive capacity accommodates uneven data access patterns (or, why what you know about DynamoDB might be outdated)
• AWS re:Invent 2018: Amazon DynamoDB Under the Hood: How We Built a Hyper-Scale Database
• Optimize Amazon DynamoDB scan latency through schema design
• Point-in-Time Recovery for DynamoDB
• On-Demand Backup and Restore for DynamoDB
• Backfilling an Amazon DynamoDB Time to Live (TTL) attribute with Amazon EMR
• How to automate the auditing of operational best practices for your AWS account
• Troubleshooting issues in your DynamoDB Encryption Client application
• Error Handling with DynamoDB
• Caching for performance with Amazon DocumentDB and Amazon ElastiCache
• Boosting application performance and reducing costs with Amazon ElastiCache for Redis
• Amazon Elasticsearch Service Troubleshooting
• Analyze Amazon Neptune Graphs using Amazon SageMaker Jupyter Notebooks
• Visualize data in Amazon Neptune using VIS.js library
• How LifeOmic’s JupiterOne simplifies security and compliance operations with Amazon Neptune
• Integrate Power BI with Amazon Redshift for insights and analytics
• Top 8 Best Practices for High-Performance ETL Processing Using Amazon Redshift
• Top 10 performance tuning techniques for Amazon Redshift
• Tuning query performance
• Amazon Redshift - Troubleshooting queries
• Amazon Redshift - Troubleshooting data loads
• Introducing the Aurora Storage Engine
• Amazon Aurora storage and reliability
• Working with Aurora Multi-Master Clusters
• How Autodesk Increased Database Scalability and Reduced Replication Lag with Amazon Aurora
• Troubleshooting for Aurora
• Amazon Aurora as an Alternative to Oracle RAC
• Reducing Aurora PostgreSQL storage I/O costs
• How Cloudability boosted performance, simplified tuning, and lowered costs with Amazon Aurora
• Amazon Aurora Update – Call Lambda Functions From Stored Procedures; Load Data From S3
• Amazon Aurora Update – PostgreSQL Compatibility
• Introduction to Aurora PostgreSQL cluster cache management
• Managing performance and scaling for Amazon Aurora MySQL
• Audit Amazon Aurora Database Logs for Connections, Query Patterns, and More, using Amazon Athena and Amazon QuickSight
• Best practices with Amazon Aurora PostgreSQL
• Auditing an Amazon Aurora Cluster
• Best practices for securing sensitive data in AWS data stores
• Database Migration—What Do You Need to Know Before You Start?
• Reduce database cost and improve availability when you migrate to the AWS Cloud
• How do I perform common DBA tasks for Amazon RDS DB instances?
• Part 1 – Role of the DBA When Moving to Amazon RDS: Responsibilities
• Part 2 – Role of the DBA When Moving to Amazon RDS: Automation
• How to Scale AWS Database Migration Service (DMS) replication instances
• Best practices for migrating an Oracle database to Amazon RDS PostgreSQL or Amazon Aurora PostgreSQL: Source database considerations for the Oracle and AWS DMS CDC environment
• How to solve some common challenges faced while migrating from Oracle to PostgreSQL
• Automating database migration and refreshing activities with AWS DMS
• Create AWS CloudFormation templates for AWS DMS tasks using Microsoft Excel
• Automating table mappings creation in AWS DMS
• AWS Database Migration Service resources (Migration Playbooks)

Systems Operations on AWS

• AWS Command Line Interface
• AWS CLI - Command completion
• AWS CLI v2 is now generally available
• AWS CLI - Configuration and credential file settings
• AWS Tools for PowerShell
• Using the AWS Tools for Windows PowerShell
• AWS Tools for PowerShell Cmdlet Reference
• Building a Virtual Classroom Application using the Amazon Chime SDK
• Use EC2Rescue for Windows Server GUI
• How can I execute user data to automatically create a file with every restart of my Amazon EC2 instance?
• Logging Windows Amazon EC2 UserData activity in Amazon CloudWatch
• How can I connect to my Amazon EC2 instance if I lost my SSH key pair after its initial launch?
• How do I install AWS Systems Manager Agent (SSM Agent) on an Amazon EC2 Linux instance at launch?
• Running Ansible Playbooks using EC2 Systems Manager Run Command and State Manager
• Query for the latest Amazon Linux AMI IDs using AWS Systems Manager Parameter Store
• Query for the Latest Windows AMI Using Systems Manager Parameter Store
• New – Query for AWS Regions, Endpoints, and More Using AWS Systems Manager Parameter Store
• How AWS Systems Manager Parameter Store uses AWS KMS
• The Right Way to Store Secrets using Parameter Store
• Use Parameter Store to Securely Access Secrets and Config Data in AWS CodeDeploy
• Rotating Your AWS Secrets Manager Secrets
• How to create and retrieve secrets managed in AWS Secrets Manager using AWS CloudFormation templates
• Patching your Windows EC2 instances using AWS Systems Manager Patch Manager
• How to patch Windows EC2 instances in private subnets Using AWS Systems Manager
• How Moody’s uses AWS Systems Manager to patch servers across multiple cloud providers
• Windows Server Update Services on AWS
• How do I install .NET Framework 3.5 on an EC2 Windows instance that doesn't have internet access?
• How patches are installed - AWS Systems Manager
• How do I enable the EPEL repository for my Amazon EC2 instance running CentOS, RHEL, or Amazon Linux?
• Packaging to Distribution – Using AWS Systems Manager Distributor to deploy Datadog
• Taking Advantage of Amazon EC2 Spot Instance Interruption Notices
• CPU credits and baseline utilization for burstable performance instances
• Understanding T2 Standard Instance CPU Credits
• How do I stop and start Amazon EC2 instances at regular intervals using Lambda?
• How do I stop and start my instances using the AWS Instance Scheduler?
• AWS Transit Gateway Egress VPC Demo
• Resolving DNS queries between VPCs and your network
• Integrating your Directory Service’s DNS resolution with Amazon Route 53 Resolvers
• Securely Connect to Linux Instances Running in a Private Amazon VPC (Agent Forwarding)
• Do I need to set a static private IP address for an Amazon EC2 Windows instance?
• Why am I receiving the error message "You are not authorized to perform this operation" when I try to launch an EC2 instance?
• How to use Amazon AppStream 2.0 to reduce your bastion host attack surface
• New – Port Forwarding Using AWS System Manager Session Manager
• Remote Desktop Gateway on AWS - AWS Quick Starts
• Announcing Lambda Support for PowerShell Core
• A Simple Way to Export Your IAM Settings
• Reset Your AWS Root Account’s Lost MFA Device Faster by Using the AWS Management Console
• How can I reset the administrator password on an EC2 Windows instance?
• Securely Access Services Over AWS PrivateLink
• Introducing AWS Gateway Load Balancer – Easy Deployment, Scalability, and High Availability for Partner Appliances
• ELB Connection Draining – Remove Instances From Service With Care
• A subnet in use by load balancers in my VPC has insufficient IP addresses
• AWS Network Firewall – New Managed Firewall Service in VPC
• Use Cases for AWS Managed Microsoft AD
• Enabling SAML for your AWS resources
• Enabling Federation to AWS Using Windows Active Directory, ADFS, and SAML 2.0
• How to automate SAML federation to multiple AWS accounts from Microsoft Azure Active Directory
• How to Enable Your Users to Access Office 365 with AWS Managed Microsoft AD
• Enable Office 365 with AWS Managed Microsoft AD without user password synchronization
• How do I grant my Active Directory users access to the API or AWS CLI with AD FS?
• Managing domain membership of dynamic fleet of EC2 instances
• How to retrieve short-term credentials for CLI use with AWS Single Sign-on
• How to Run ECS Windows Task with group Managed Service Account (gMSA)
• Automatically update instances in an Amazon ECS cluster using the AMI ID parameter
• Managing Amazon EKS Clusters with Rancher
• AWS Batch Use cases
• Build Your Own Face Recognition Service Using Amazon Rekognition
• Using Amazon RDS Proxy with AWS Lambda
• Use Amazon WorkSpaces on Your Samsung Galaxy S8/S8+ With the New Samsung DeX
• How can I use DataSync to transfer data from an Amazon EFS file system to an Amazon S3 bucket?
• AWS DataSync Demo - Easily Transfer Data to and From AWS Up to 10x Faster
• New – Amazon FSx for Windows File Server – Fast, Fully Managed, and Secure
• Working with Shadow Copies
• Deploying Multi-AZ File Systems
• Amazon FSx for Windows File Server, Capítulo 1 – Criando e configurando
• Amazon FSx for Windows File Server, Capítulo 2 – Mais funcionalidades: Shadow Copy, DFS Namespace, Data Deduplication e Quotas
• Amazon FSx for Windows File Server, Capítulo 3 – Mapeando o FSx para servidores Linux
• Amazon FSx for Windows File Server, Capítulo 4 – Migrando dados com o AWS DataSync (Cenário de Multi-Região)
• Achieving 80,000 IOPS for SQL Server on AWS EC2 and EBS
• New – EBS Direct APIs – Programmatic Access to EBS Snapshot Content
• AWS re:Invent 2018: Powering Next-Gen EC2 Instances: Deep Dive into the Nitro System
• AWS re:Inforce 2019: Security benefits of the Nitro architecture
• How Amazon Uses Explosive-Resistant Devices To Transfer Data To AWS (AWS Snowball)
• AWS OpsHub for Snow Family
• Amazon S3 performance and cost optimization
• Protecting Amazon S3 Against Object Deletion (S3 "Recycle Bin")
• What are the differences between data and management events in CloudTrail?
• AWS Compute Optimizer – Your Customized Resource Optimization Service
• Amazon CloudWatch Concepts
• CloudWatch Logs Agent Reference
• CloudWatch Events Tutorials
• Monitoring Trusted Advisor with Amazon CloudWatch Events and Amazon CloudWatch
• AWS Trusted Advisor Aggregator
• Monitoring Amazon GuardDuty Findings with Amazon CloudWatch Events
• How Does AWS CloudFormation Work?
• How do I resolve AWS CloudFormation template validation errors or template format errors?
• Up your AWS CloudFormation testing game using TaskCat
• A deep dive into testing with TaskCat
• Creating a Stack on the AWS CloudFormation Console
• New – Import Existing Resources into a CloudFormation Stack
• How do I prevent the resources in my AWS CloudFormation stack from getting deleted or updated?
• Template Snippets
• AWS CloudFormation Update – Public Coverage Roadmap & CDK Goodies
• AWS re:Invent 2019: Deep dive into AWS Cloud Development Kit
• AWS re:Invent 2019: Infrastructure as .NET with the AWS CDK
• Getting Started with AWS Support
• AWS Tagging Best Practices
• AWS re:Invent 2015: A Day in the Life of a Netflix Engineer
• AWS re:Invent 2016: Another Day in the Life of a Netflix Engineer
• AWS re:Invent 2017: A Day in the Life of a Netflix Engineer III
• AWS re:Invent 2018: Another Day in the Life of a Cloud Network Engineer at Netflix
• AWS re:Invent 2019: A day in the life of a Netflix engineer IV
• Conformity Monkey

DevOps Engineering on AWS

• Introduction to DevOps on AWS
• DevOps and AWS (Case Studies)
• What Team Structure is Right for DevOps to Flourish?
• What is Continuous Delivery?
• What is Continuous Integration?
• Configuration Drift: Phoenix Server vs Snowflake Server Comic
• Walkthrough: Refer to resource outputs in another AWS CloudFormation stack
• AWS CloudFormation Sample templates
• AWS CloudFormation best practices
• CloudFormation helper scripts reference
• Integrating AWS CloudFormation Guard into CI/CD pipelines
• Introducing AWS CloudFormation Guard 2.0
• Using OPA to create AWS Config rules
• CloudFormation Update – CLI + Third-Party Resource Support + Registry
• Infrastructure as Code
• AWS CDK examples
• CDK Pipelines: Continuous delivery for AWS CDK applications
• AWS CLI - Command completion
• Error retries and exponential backoff in AWS
• AWS SAM resource and property reference
• Practicing Continuous Integration and Continuous Delivery on AWS
• Using Federated Identities with AWS CodeCommit
• Migrate a repository incrementally
• Working with repositories in AWS CodeCommit
• Integrate GitHub monorepo with AWS CodePipeline to run project-specific CI/CD pipelines
• Validating AWS CodeCommit Pull Requests with AWS CodeBuild and AWS Lambda
• Tutorial: Create a simple pipeline (CodeCommit repository)
• Multi-branch CodePipeline strategy with event-driven architecture
• Building a Cross-account CI/CD Pipeline
• Building a CI/CD pipeline for cross-account deployment of an AWS Lambda API with the Serverless Framework
• Amazon CodeGuru features
• New- Amazon DevOps Guru Helps Identify Application Errors and Fixes
• Software Package Management with AWS CodeArtifact
• Test Reports with AWS CodeBuild
• AWS Elastic Beanstalk sample for CodeBuild
• Setting up a CI/CD pipeline by integrating Jenkins with AWS CodeBuild and AWS CodeDeploy
• Building a Secure Cross-Account Continuous Delivery Pipeline
• Building a CI/CD pipeline for cross-account deployment of an AWS Lambda API with the Serverless Framework
• AWS CodeBuild Local Builds
• Improve Build Performance and Save Time Using Local Caching in AWS CodeBuild
• Extending AWS CodeBuild with Custom Build Environments
• New – Building a Continuous Integration Workflow with Step Functions and AWS CodeBuild
• Using AWS Step Functions State Machines to Handle Workflow-Driven AWS CodePipeline Actions
• Complete CI/CD with AWS CodeCommit, AWS CodeBuild, AWS CodeDeploy, and AWS CodePipeline
• AWS CodePipeline product integrations
• Integrations with CodePipeline action types
• Implementing DevSecOps Using AWS CodePipeline
• Detect and react to changes in pipeline state with Amazon CloudWatch Events
• Building a Secure Cross-Account Continuous Delivery Pipeline
• Create a pipeline in CodePipeline that uses resources from another AWS account
• Integrating SonarCloud with AWS CodePipeline using AWS CodeBuild
• Amazon ECS and Load balancer types
• How do I set up dynamic port mapping for Amazon ECS?
• Building Windows containers with AWS CodePipeline and custom actions
• Easier way to control access to AWS regions using IAM policies
• AWS: Denies access to AWS based on the requested Region
• IAM Tutorial: Enable users to manage their credentials and MFA settings
• Integrating AWS CodeCommit with Jenkins
• Build specification reference for CodeBuild
• CodeDeploy AppSpec File reference
• How to Test and Debug AWS CodeDeploy Locally Before You Ship Your Code
• AWS CodeDeploy now supports linear and canary deployments for Amazon ECS
• Overview of Deployment Options on AWS
• Run code before terminating an EC2 Auto Scaling instance
• Implementing Microservices on AWS
• Micro-frontend Architectures on AWS
• Substituindo o Monólito com a AWS, Micro Frontends e Modyo
• Best practices for working with AWS Lambda functions
• Lambda quotas
• Provisioned Concurrency scaling example
• Reserved concurrency
• Can I have common environment variables for a group of Lambda functions?
• Announcing improved VPC networking for AWS Lambda functions
• Improved Testing on the AWS Lambda Console
• Understanding the Different Ways to Invoke Lambda Functions
• Serverless COBOL: Rejuvenating legacy code with open source software — Part 1
• Serverless COBOL: Rejuvenating legacy code with open source software — Part 2
• AWS SAM template anatomy
• Error handling in Step Functions
• Wait in Step Functions
• How to update AWS Service Catalog provisioned products to new product versions and report changes using AWS Step Functions, AWS Lambda, and Amazon Athena
• New – Local Mocking and Testing with the Amplify CLI
• Set up mock integrations in API Gateway
• Enable mock integration using the API Gateway console
• Deploying Serverless Applications Gradually
• Applying the Twelve-Factor App Methodology to Serverless Applications
• Deploying applications to Elastic Beanstalk environments
• Set up a Continuous Deployment Pipeline using AWS CodePipeline and AWS Elastic Beanstalk
• Docker basics for Amazon ECS
• Automating rollback of failed Amazon ECS deployments
• Build a Continuous Delivery Pipeline for Your Container Images with Amazon ECR as Source
• Amazon ECS Task Placement Strategies
• Private Registry Authentication for Tasks
• How Amazon ECS manages CPU and memory resources
• How can I allocate memory to tasks in Amazon ECS?
• Image scanning - Amazon ECR
• Scanning Docker Images for Vulnerabilities using Clair, Amazon ECS, ECR, and AWS CodePipeline
• How the Bottlerocket build system works
• Implementing DevSecOps Using AWS CodePipeline
• Building end-to-end AWS DevSecOps CI/CD pipeline with open source SCA, SAST and DAST tools
• How to Bake Open Source Security into Your AWS CodeBuild Pipeline
• Scanning images with Trivy in an AWS CodePipeline
• How to Bake Open Source Security into Your AWS CodeBuild Pipeline
• Integrating AWS CloudFormation security tests with AWS Security Hub and AWS CodeBuild reports
• Using AWS CodePipeline, AWS CodeBuild, and AWS Lambda for Serverless Automated UI Testing
• Fine-tuning blue/green deployments on application load balancer
• Tutorial: Creating a service using a blue/green deployment
• Automating Blue/Green Deployments of Infrastructure and Application Code using AMIs, AWS Developer Tools, & Amazon EC2 Systems Manager
• Automate OS Image Build Pipelines with EC2 Image Builder
• Use AWS CodeDeploy to Implement Blue/Green Deployments for AWS Fargate and Amazon ECS
• Performing Blue/Green Deployments with AWS CodeDeploy and Auto Scaling Groups
• Create immutable servers using EC2 Image Builder and AWS CodePipeline
• Task Definition Parameters
• Example task definitions
• Continuous Deployment to Amazon ECS using AWS CodePipeline, AWS CodeBuild, Amazon ECR, and AWS CloudFormation
• CI/CD on Amazon EKS using AWS CodeCommit, AWS CodePipeline, AWS CodeBuild, and FluxCD
• Continuous Deployment to Kubernetes using AWS CodePipeline, AWS CodeCommit, AWS CodeBuild, Amazon ECR and AWS Lambda
• AWS Fargate considerations
• Advanced environment customization with configuration files (.ebextensions)
• Clone an Elastic Beanstalk environment
• AWS X-Ray console
• Debugging with Amazon CloudWatch Synthetics and AWS X-Ray
• Integrating AWS X-Ray with other AWS services
• Running the X-Ray daemon on Amazon ECS
• Using ServiceLens to Monitor the Health of Your Applications
• CloudWatch Logs Insights query syntax
• CloudWatch Logs Insights Sample queries
• Announcing CloudTrail Insights: Identify and Respond to Unusual API Activity
• Creating a Trail for an Organization
• Manage custom AWS Config rules with remediations using conformance packs
• How to create custom AWS Config rules with AWS CodeStar
• New – Use CloudWatch Synthetics to Monitor Sites, API Endpoints, Web Workflows, and More
• Running AWS commands from Slack using AWS Chatbot
• Introducing AWS Chatbot: ChatOps for AWS
• IT Governance in a Dynamic DevOps Environment
• AWS Summit - DevOps Culture at Amazon
• AWS re:Invent 2018: Moving to DevOps the Amazon Way
• Applying the Twelve-Factor App Methodology to Serverless Applications
• AWS Solutions - Distributed Load Testing on AWS
• Use Serverspec for test-driven development of infrastructure code

Security Engineering on AWS

• AWS Security Checklist
• AWS Security Reference Architecture (AWS SRA)
• AWS Startup Security Baseline (AWS SSB)
• Privacy Features of AWS Services
• Shared Responsibility Model
• AWS Cloud Adoption Framework (CAF) - Security Perspective
• Navegando na conformidade com a LGPD na AWS
• NIST Cybersecurity Framework (CSF) - Aligning to the NIST CSF in the AWS Cloud
• AWS Services in Scope by Compliance Program
• PCI Compliance on AWS
• AWS Security Incident Response Guide
• How to approach threat modeling
• Provable Security - Automated Reasoning
• AWS IP Address Ranges
• IAM Best Practices
• Limitations on IAM Entities and Objects
• IAM JSON Policy Elements Reference
• IAM Policy Elements: Variables and Tags
• IAM: Policies and Permissions
• How to define least-privileged permissions for actions called by AWS services
• Create fine-grained session permissions using IAM managed policies
• Permissions Boundaries for IAM Entities
• How can I use permissions boundaries to limit the scope of IAM users and roles and prevent privilege escalation?
• Policy evaluation logic
• AWS Global Condition Context Keys
• Creating a Condition with Multiple Keys or Values
• How can I use IAM policy tags to restrict how an EC2 instance or EBS volume can be created?
• Using Service-Linked Roles
• Approaches for authenticating external applications in a machine-to-machine scenario
• AWS Services That Work with IAM
• Tighten S3 permissions for your IAM users and roles using access history of S3 actions
• Automate analyzing your permissions using IAM access advisor APIs
• Proving security at scale with automated reasoning
• How AWS uses automated reasoning to help you achieve security at scale (AWS Zelkova)
• IAM Access Analyzer - Por que habilitar?
• Access Analyzer policy validation
• Access Analyzer policy check reference
• Generate policies based on access activity
• How can I grant a user Amazon S3 console access to only a certain bucket or folder?
• Announcing the Golden AMI Pipeline
• Creating a Golden AMI Pipeline Integrated with Qualys for Vulnerability Assessments
• Getting Started with Automation
• Automation use cases
• Use AWS Fargate and Prowler to send security configuration findings about AWS services to Security Hub
• How can I use user data to replace a lost SSH key pair after the initial launch of my Amazon EC2 instance?
• How can I use Systems Manager automation to enforce that only IMDSv2 is used to access instance metadata from my Amazon EC2 instance?
• AWS re:Invent 2019: Security best practices for the Amazon EC2 instance metadata service (IMDSv2)
• Add defense in depth against open firewalls, reverse proxies, and SSRF vulnerabilities with enhancements to the EC2 Instance Metadata Service (IMDSv2)
• AWS re:Invent 2019: Deep dive on Amazon EBS
• Automating processes for handling and remediating AWS Abuse alerts
• I received an abuse report from AWS about my resources– what should I do?
• How do I report abuse of AWS resources?
• What to Do If You Inadvertently Expose an AWS Access Key
• How to Detect and Automatically Revoke Unintended IAM Access with Amazon CloudWatch Events
• AWS re:Invent 2018: How Nubank Automates Fine-Grained Security with IAM, AWS Lambda, & CI/CD
• AWS re:Invent 2017: Use Amazon EC2 Systems Manager to Perform Automated Resilience
• Enabling MFA Devices
• IAM Tutorial: Enable users to manage their credentials and MFA settings
• Using MFA delete
• AWS: Allows MFA-authenticated IAM users to manage their own credentials on the my security credentials page
• Using SSL/TLS to Encrypt a Connection to a DB Instance
• Best practices for securing sensitive data in AWS data stores
• What S3 bucket policy should I use to comply with the AWS Config rule s3-bucket-ssl-requests-only?
• Serving SSE-KMS encrypted content from S3 using CloudFront
• Analyzing encrypted S3 objects with Amazon Macie
• Amazon Macie - User Guide
• Using managed data identifiers in Amazon Macie
• Automate the archival and deletion of sensitive data using Amazon Macie
• Changing your Amazon S3 encryption from S3-Managed to AWS KMS
• What does Amazon S3 replicate?
• Applying best practices for securing sensitive data in Amazon RDS
• Performing SQL database client-side encryption for multi-Region high availability
• Monitor Amazon Aurora Database Activities Using DataSunrise Database Security
• How to use AWS Secrets Manager to rotate credentials for all Amazon RDS database types, including Oracle
• How to use AWS Secrets Manager to securely store and rotate SSH key pairs
• Automatically rotate IAM user access keys using AWS Secrets Manager
• Post-quantum TLS now supported in AWS KMS
• AWS re:Inforce 2019: How Encryption Works in AWS
• How to Remediate Amazon Inspector Security Findings Automatically
• Amazon Inspector agents
• GuardDuty EC2 finding types
• Amazon GuardDuty Partners
• Automated Response and Remediation with AWS Security Hub
• Enabling AWS Security Hub integration with AWS Chatbot
• AWS Security Hub - Managed insights
• How to Enable Custom Actions in AWS Security Hub
• Automating AWS CIS Benchmark Alerts and Remediation using Eventbridge
• Amazon EventBridge - Events from AWS services
• Managed Renewal for ACM's Amazon-Issued Certificates
• Why did my ACM certificate fail automatic renewal?
• Can I switch my ACM certificate’s validation method?
• What Is Amazon Kinesis Agent for Microsoft Windows?
• Tutorial: Sending VPC Flow Logs to Splunk Using Amazon Kinesis Data Firehose
• Scale Amazon Kinesis Data Streams with AWS Application Auto Scaling
• Troubleshooting Kinesis Data Streams Consumers
• Format Options for ETL Inputs and Outputs in AWS Glue
• How to Visualize and Refine Your Network’s Security by Adding Security Group IDs to Your VPC Flow Logs
• How to Use Nubeva with Amazon VPC Traffic Mirroring to Gain Decrypted Visibility of Your Network Traffic
• New – VPC Traffic Mirroring – Capture & Inspect Network Traffic
• Hands-on walkthrough of the AWS Network Firewall flexible rules engine – Part 1
• Hands-on walkthrough of the AWS Network Firewall flexible rules engine – Part 2
• Securing messages published to Amazon SNS with AWS PrivateLink
• Introducing AWS Client VPN to Securely Access AWS and On-Premises Resources
• AWS Client VPN - Scenarios and examples
• AWS Direct Connect + VPN
• How do I establish an AWS VPN over an AWS Direct Connect connection?
• Adding MACsec security to AWS Direct Connect connections
• How to add DNS filtering to your NAT instance with Squid
• Why is my presigned URL for an Amazon S3 bucket expiring before the expiration time that I specified?
• How to Enhance the Security of Sensitive Customer Data by Using Amazon CloudFront Field-Level Encryption
• Authorization@Edge using cookies: Protect your Amazon CloudFront content from being downloaded by unauthenticated users
• How do I use CloudFront to serve a static website hosted on Amazon S3?
• Reduce DDoS Risks Using Amazon Route 53 and AWS Shield
• AWS Shield Threat Landscape report is now available
• AWS re:Invent 2016: Mitigating DDoS Attacks on AWS: Five Vectors and Four Use Cases
• AWS WAF Security Automations
• Simplify Login with Application Load Balancer Built-in Authentication
• Application Load Balancers Now Support Multiple TLS Certificates With Smart Selection Using SNI
• Controlling and managing access to a REST API in API Gateway
• Introducing mutual TLS authentication for Amazon API Gateway
• Use API Gateway Lambda authorizers
• Building ADFS Federation for your Web App using Amazon Cognito User Pools
• What's the difference between Amazon Cognito user pools and identity pools?
• How do I set up an Amazon Cognito user pool as an authorizer on an API Gateway REST API?
• How to Use New Advanced Security Features for Amazon Cognito User Pools
• Adding Advanced Security to a User Pool
• How to Enable Server-Side LDAPS for Your AWS Managed Microsoft AD Directory
• Integrações: Active Directory, Azure AD com AWS IAM e AWS Single Sign-On
• Field Notes: Integrating a Multi-Forest Source Environment with AWS SSO
• Field Notes: Integrating Active Directory Federation Service with AWS Single Sign-On
• New AWS SSO gallery app simplifies Azure AD set-up with AWS
• AWS SSO and Azure AD integration - step by step
• How to use G Suite as an external identity provider for AWS SSO
• The Next Evolution in AWS Single Sign-On
• How to create and manage users within AWS Single Sign-On
• How to bulk import users and groups from CSV into AWS SSO
• AWS SSO - Supported applications
• Enabling custom identity broker access to the AWS console
• Identity federation in AWS
• SAML Security Cheat Sheet - OWASP
• Git pre-commit validation of AWS CloudFormation templates with cfn-lint
• How to Use AWS Config to Monitor for and Respond to Amazon S3 Buckets Allowing Public Access
• AWS Config: Checking for Compliance with New Managed Rule Options
• Conformance Pack Sample Templates
• AWS Config best practices
• Using AWS Service Catalog Constraints
• Building a React Frontend for Service Catalog with AWS Amplify
• AWS Landing Zone
• AWS Terraform Landing Zone (TLZ) Accelerator
• Introducing the Cloud Development Kit for Terraform (Preview)
• AWS Control Tower
• AWS Control Tower – Set up & Govern a Multi-Account AWS Environment
• Guardrail Reference
• AWS Solutions - Customizations for AWS Control Tower
• AWS Centralized Logging
• Vulnerability and Penetration Testing
• Penetration Testing in the AWS Cloud: What You Need to Know
• Standardized Architecture for PCI DSS on the AWS Cloud
• Tutorial: Blocking IP Addresses That Submit Bad Requests
• Architectures to exemplify digital signature and secure message transmission to the Brazilian Instant Payment System (PIX)
• Raising the bar on storage: How to improve your disaster recovery, ransomware prevention, and backup strategy

Running Containers on Amazon Elastic Kubernetes Service

• Amazon Elastic Kubernetes Service (EKS) Primer
• Containers na AWS - Immersion Day
• Introducing the AWS Controllers for Kubernetes (ACK)
• Deep Dive into firecracker-containerd
• 16 Benefícios do Amazon EKS para se considerar quando escolher sua opção de deploy
• Boas práticas de utilização de instâncias Spot no Amazon EKS
• Self-managed nodes
• Managed node groups
• The eksctl command line utility
• eksctl - The official CLI for Amazon EKS
• Managing Amazon EKS Clusters with Rancher
• Cluster VPC considerations
• Deploy a Kubernetes Application
• Operating a multi-regional stateless application using Amazon EKS
• How to build container images with Amazon EKS on Fargate
• Speeding up Windows container launch times with EC2 Image builder and image cache strategy
• How to capture application logs when using Amazon EKS on AWS Fargate
• Streaming logs from Amazon EKS Windows pods to Amazon CloudWatch Logs using Fluentd
• Using Amazon FSx for Windows File Server as persistent storage on Windows Containers
• Using the FSx for Lustre CSI Driver with Amazon EKS
• Fluent Bit for Amazon EKS on AWS Fargate is here
• Install SSM Agent on Amazon EKS worker nodes by using Kubernetes DaemonSet
• New – Use CloudWatch Synthetics to Monitor Sites, API Endpoints, Web Workflows, and More
• Visual monitoring of applications with Amazon CloudWatch Synthetics
• Getting started with AWS App Mesh and Amazon EKS
• Using sidecar injection on Amazon EKS with AWS App Mesh
• Amazon EKS networking
• Pod networking (CNI)
• Optimize IP addresses usage by pods in your Amazon EKS cluster
• De-mystifying cluster networking for Amazon EKS worker nodes
• Introducing security groups for pods
• Installing Calico on Amazon EKS
• Open Source Calico for Windows Containers on Amazon EKS
• Introducing OIDC identity provider authentication for Amazon EKS
• Kubernetes RBAC and IAM Integration in Amazon EKS using a Java-based Kubernetes Operator
• Installing aws-iam-authenticator
• Managing users or IAM roles for your cluster
• Why can't I connect to my Amazon EKS cluster?
• How do I resolve the "Your current user or role does not have access to Kubernetes objects on this EKS cluster" error in Amazon EKS?
• Troubleshooting IAM on EKS
• Windows Authentication on Amazon EKS Windows pods
• How to use ACM Private CA for enabling mTLS in AWS App Mesh
• How to use AWS Secrets & Configuration Provider with your Kubernetes Secrets Store CSI driver
• SkyScanner: Building Highly-Available, Multi-Region Kubernetes Clusters on 100% Amazon EC2 Spot

Arquiteturas de Referência & Tools

• AWS Quick Starts
• AWS Solutions
• Serverless Land
• AWS CloudFormation Templates
• AWS SAM - Serverless Application Repository
• AWS Samples
• AWS Cloud Design Patterns
• AWS Pricing Calculator
• AWS Simple Monthly Calculator
• The Amazon Builders' Library
• AWS Geek Cloud Diagrams & Notes
• AWS Global Infrastructure Network (3D Map)
• Explore AWS Outposts
• AWS Digital Training Provider Courses
• AWS re:Invent 2020 – Announcements From the News Blog
• [TOOLS] AWS Cloud Adoption Readiness Tool (CART)
• [TOOLS] Amazon ECR Public Gallery
• [TOOLS] Try sample applications on Amazon AppStream 2.0
• [TOOLS] AWS Sandbox Accounts for Events
• [TOOLS] AWS Support Tools
• [TOOLS] CloudPing
• [TOOLS] S3 Transfer Acceleration Speed Comparison Tool
• [TOOLS] AWS Global Accelerator - Speed Comparison
• [TOOLS] Overlapping CIDRs using AWS Transit Gateway in VPC and NAT Instances
• [TOOLS] Amazon EC2 Instance Selector
• [TOOLS] Amazon WorkSpaces - Connection Health Check
• [TOOLS] Web Identity Federation Playground
• [TOOLS] Service Control Policy examples
• [TOOLS] AWS IAM Identity Center Sync
• [TOOLS] Amazon Cognito Passwordless Auth
• [TOOLS] AWS Policy Generator
• [TOOLS] IAM Access Key-Auto rotation
• [TOOLS] AWS Organizations Alternate Contact Manager
• [TOOLS] Temporary Elevated Access Tool
• [TOOLS] AWS Elastic Load Balancer Demos
• [TOOLS] AWS Health Aware
• [TOOLS] AWS Deployment Framework
• [TOOLS] Trusted Advisor Tools
• [TOOLS] Trusted Advisor Exposed Keys CloudWatch Event Monitor
• [TOOLS] AWS Incident Response Playbook Samples
• [TOOLS] Macie Findings integration with Slack Channel
• [TOOLS] Git-Secrets
• [TOOLS] Self-Service Security Assessment tool
• [TOOLS] AWS CloudSaga - Simulate security events in AWS
• [TOOLS] AWS Secure Environment Accelerator
• [TOOLS] AWS Security Hub Cross-Account Controls Disabler
• [TOOLS] Amazon Guardduty Tester
• [TOOLS] SIEM on Amazon Elasticsearch Service
• [TOOLS] AWS WAF Operations Dashboards
• [TOOLS] Amazon S3 Find and Forget
• [TOOLS] Multi-Attach EBS volumes across multiple hosts using GFS2
• [TOOLS] Data Transfer Hub - S3 Plugin
• [TOOLS] AWS Data Replication Hub
• [TOOLS] AWS Data Wrangler
• [TOOLS] AWS Dev Fabric for SQL Server
• [TOOLS] Simple Database Archiving Solution
• [TOOLS] Snapshot Tool for Amazon Aurora
• [TOOLS] Amazon DynamoDB Encryption Client for Python
• [TOOLS] Registry of Open Data on AWS
• [TOOLS] Karpenter for Kubernetes
• [TOOLS] Bootstrapping clusters with EKS Blueprints
• [TOOLS] Nextcloud Container Deployment on AWS - Serverless
• [TOOLS] AWS SSM Chaos Runner
• [TOOLS] AWS Amplify Identity Broker with Cognito
• [TOOLS] AWS IAM Authenticator for Kubernetes
• [TOOLS] AWS ParallelCluster - HPC for the Cloud
• [TOOLS] Operational Management: Inventory, Patching, and Compliance
• [TOOLS] AWS Automated Inventory (aws-auto-inventory)
• [TOOLS] Awesome CloudFormation
• [TOOLS] AWS CloudFormation Guard
• [TOOLS] TaskCat
• [TOOLS] AWS CloudFormation Template Flip
• [TOOLS] AWS Device Farm Sample App for Android
• [TOOLS] Amazon CloudFront Secure Static Website
• [TOOLS] SES Event Processing
• [TOOLS unofficial] The Open Guide to Amazon Web Services
• [TOOLS unofficial] JMESPath
• [TOOLS unofficial] JMESPath Terminal
• [TOOLS unofficial] AWSume: AWS Assume Made Awesome
• [TOOLS unofficial] AWS IP Ranges
• [TOOLS unofficial] Cloudcraft - Create smart AWS diagrams
• [TOOLS unofficial] Awesome SNS
• [TOOLS unofficial] The Grinder
• [TOOLS unofficial] Apache JMeter
• [TOOLS unofficial] Kubernetes instance calculator
• [TOOLS unofficial] Kubecost - Cost Model
• [TOOLS unofficial] kubectl
• [TOOLS unofficial] eksctl
• [TOOLS unofficial] Rancher
• [TOOLS unofficial] Harbor
• [TOOLS unofficial] Docker Samples
• [TOOLS unofficial] Dockerfile-lint
• [TOOLS unofficial] Periodic Table of DevOps
• [TOOLS unofficial] CloudFormation Lint: CFN Nag
• [TOOLS unofficial] CloudFormation Lint: CFripper
• [TOOLS unofficial] Checkov - Prisma Cloud
• [TOOLS unofficial] OPA - Open Policy Agent
• [TOOLS unofficial] IAMSpy - AWS IAM
• [TOOLS unofficial] Principal Mapper (PMapper) - AWS IAM
• [TOOLS unofficial] AWS SSO Util
• [TOOLS unofficial] AWS Transfer for SFTP - Azure AD
• [TOOLS unofficial] Timber - Logging appender for AWS S3
• [TOOLS unofficial] AWS CloudFront CDN Edge Locations
• [TOOLS unofficial] Lambda Load Testing
• [TOOLS unofficial] AWS Lambda Power Tuning
• [TOOLS unofficial] Awesome Honeypots
• [TOOLS unofficial] Bees with Machine Guns!
• [TOOLS unofficial] Modern Honey Network
• [TOOLS unofficial] OWASP ZAP
• [TOOLS unofficial] ScoutSuite
• [TOOLS unofficial] AWS Sec Monitor
• [TOOLS unofficial] Prowler - AWS Security Tool
• [TOOLS unofficial] Rhino Security Labs - Pacu
• [TOOLS unofficial] Rhino Security Labs - CloudGoat
• [TOOLS unofficial] Rhino Security Labs - Cloud Container Attack
• [TOOLS unofficial] Clara anti-malware for S3 buckets
• [TOOLS unofficial] Cloudsplaining - IAM Security Assessment tool
• [TOOLS unofficial] CrowdStrike Cloud-AWS
• [TOOLS unofficial] Lithnet Password Protection for Active Directory (LPP)
• [TOOLS unofficial] Gophish - Open-Source Phishing Framework
• [TOOLS unofficial] aws-cloud-mindmaps
• [TOOLS unofficial] Console Recorder for AWS
• [TOOLS unofficial] Netflix ConsoleMe
• [TOOLS unofficial] Netflix Weep
• [TOOLS unofficial] Twemproxy (nutcracker)
• [TOOLS unofficial] alterNAT
• [TOOLS unofficial] MySQL Samples
• [TOOLS unofficial] Static Demo - 2048
• [TOOLS unofficial] Cost report generator
• [TOOLS unofficial] aws-nuke - cleanup AWS Account
• [TOOLS unofficial] Fido: A PowerShell download script for Windows ISOs
• [TOOLS unofficial] Git Repository Sync Action

Workshops & Laboratórios

• [LABS] AWS Qwiklabs
• [LABS] AWS Well-Architected Labs
• [LABS] VMware Cloud on AWS
• [LABS] Break a Monolith Application into Microservices
• [LABS] Building CI/CD with Blue/Green and Canary Deployments on EKS using CDK
• [Workshop] AWS Workshops
• [Workshop] AWSome AWS Workshops
• [Workshop] AWS Well-Architected Labs
• [Workshop] Modelo de Maturidade de Segurança da AWS
• [Workshop] AWS Cloud Champion
• [Workshop] Networking Workshop - Transit Gateway and Traffic Mirroring
• [Workshop] Amazon EC2 Spot Instances Workshop
• [Workshop] Amazon CloudWatch
• [Workshop] SSM & Config
• [Workshop] Building Event-Driven Architectures on AWS
• [Workshop] Amazon FSx Workshop
• [Workshop] SQL Server Immersion Day
• [Workshop] Windows Containers on AWS
• [Workshop] Amazon ECS Workshop for AWS Fargate
• [Workshop] Amazon EKS Workshop
• [Workshop] Amazon Lightsail Workshop
• [Workshop] Amazon DynamoDB Labs
• [Workshop] Amazon Aurora Labs for MySQL
• [Workshop] Generate Content with Lambda@Edge
• [Workshop] AWS EMP Workshop
• [Workshop] AWS Database Migration Workshop
• [Workshop] CloudEndure Migration Factory Workshop
• [Workshop] CloudEndure Deep Dive - Workshop
• [Workshop] Disaster Recovery/Recuperação de Desastres na AWS
• [Workshop] Migration Immersion Day
• [Workshop] Migration and Modernization Workshop Guide
• [Workshop] Kynesis Streaming Analytics Workshop
• [Workshop] Identity: Choose Your Own SAML Adventure
• [Workshop] AWS Multi-Account Setup
• [Workshop] Landing Zone Workshop
• [Workshop] AWS Service Catalog Tools Workshop
• [Workshop] AWS Security Workshops
• [Workshop] Security Workshops - Permission Boundaries: How to Truly Delegate Permissions on AWS
• [Workshop] Security Workshops - Data Protection, Detection, Identity, Threat Detection
• [Workshop] AWS Protecting Workloads Workshops
• [Workshop] Getting Hands on with Amazon GuardDuty
• [Workshop] Scaling threat detection and response in AWS
• [Workshop] Integrating security into your container pipeline
• [Workshop] DevSecOps with Snyk
• [Workshop] DevSecOps on AWS
• [Workshop] CI/CD workshop for Amazon ECS
• [Workshop] Gaining operational insights with AIOps using Amazon DevOps Guru
• [Workshop] Windows on AWS
• [Workshop] Running Microsoft Workloads on AWS Immersion Day
• [Workshop] Amazon RDS for SQL Server Workshop
• [Workshop] AWS Cloud Development Kit (CDK) Workshop
• [Workshop] Learn Python On AWS Workshop
• [Workshop unofficial] Welcome to the flAWS challenge
• [Workshop unofficial] Welcome to the flAWS 2 challenge
• [Workshop unofficial] Play with Docker
• [Workshop unofficial] Hello Kubernetes w/ Minikube
• [SLIDES] Technical Essentials on AWS
• [SLIDES] AWS Business Essentials Day
• [MATERIAL] Advanced Architecting on AWS- Online Course Supplement
• [EBOOK] Hands-On AWS Penetration Testing with Kali Linux
• [FILES] Scripts Demo AWS EKS Course
• [FILES] Security Engineering on AWS - script lab 2
• [FILES] Developing on AWS - Additional Resources
• [FILES] Developing on AWS - Solutions for Labs
• [FILES] AWSome Days - Additional Resources
• [VIDEO-LABS] AWS Technical Essentials
• [VIDEO-LABS] AWS Cloud Practitioner Essentials
• [VIDEO-LABS] AWS Security Essentials
• [VIDEO-LABS] Well-Architected Best Practices
• [VIDEO-LABS] Architecting on AWS - v6.8
• [VIDEO-LABS] Architecting on AWS - v7.0
• [VIDEO-LABS] Advanced Architecting on AWS - v2.8
• [VIDEO-LABS] Advanced Architecting on AWS - v3.0
• [VIDEO-LABS] Cloud Financial Management for Builders
• [VIDEO-LABS] Systems Operations on AWS - v3.3
• [VIDEO-LABS] Systems Operations on AWS - v4.0
• [VIDEO-LABS] Developing on AWS
• [VIDEO-LABS] Developing on AWS - v4.0
• [VIDEO-LABS] Advanced Developing on AWS
• [VIDEO-LABS] DevOps Engineering on AWS
• [VIDEO-LABS] Security Engineering on AWS
• [VIDEO-LABS] Planning and Designing Database on AWS
• [VIDEO-LABS] Big Data on AWS
• [VIDEO-LABS] Building Data Analytics Solutions Using Amazon Redshift
• [VIDEO-LABS] Building Data Lake on AWS
• [VIDEO-LABS] Building Batch Data Analytics Solutions for AWS
• [VIDEO-LABS] Running Containers on Amazon EKS
• [VIDEO-LABS] Deep Learning on AWS
• [VIDEO-LABS] Moving to AWS Serverless
• [VIDEO-LABS] Migrating to AWS - v2.0
• [VIDEO-LABS] IoT in Scale: IoT Solution using AWS Services

[DISCLAIMER] Links e materiais disponibilizados como conteúdo adicional para os estudos nos treinamentos da AWS. As informações aqui inseridas são mantidas por mim mesmo, e não expressam nenhuma informação oficial por parte da AWS; mesmo que em sua maioria sejam artigos e blog posts oficiais da Amazon Web Services.