Ends in
00
days
00
hrs
00
mins
00
secs
ENROLL NOW

Black Friday Sale - AWS SAA, CDA, SYSOPS Practice Exams at $10.49 USD, eBooks at $3.99 USD ONLY!

AWS Cheat Sheets

Home » AWS Cheat Sheets » Page 14

AWS Security Hub

2024-11-14T08:12:17+00:00

Bookmarks Features How It Works Concepts Pricing AWS Security Hub Cheat Sheet AWS Security Hub provides a comprehensive view of your security state within AWS and your compliance with security industry standards and best practices. Features You now have a single place that aggregates, organizes, and prioritizes your security alerts, or findings, across multiple accounts, AWS partner tools, and AWS services such as Amazon GuardDuty, Amazon Inspector, Amazon Macie, AWS IAM Access Analyzer, AWS Firewall Manager, and AWS Audit Manager. AWS Security Hub works with AWS Organizations to simplify security posture management across [...]

AWS Security Hub2024-11-14T08:12:17+00:00

Elastic Fabric Adapter (EFA)

2023-06-23T05:53:26+00:00

Bookmarks Limitations Pricing Elastic Fabric Adapter (EFA) Cheat Sheet An Elastic Fabric Adapter (EFA) is a network device that you can attach to your Amazon EC2 instance to accelerate High Performance Computing (HPC) and machine learning applications. An EFA is an Elastic Network Adapter (ENA) with an additional OS-bypass functionality.  How It Works EFA integrates with  Libfabric 1.9.0 and it supports Open MPI 4.0.2 and Intel MPI 2019 Update 6 for HPC applications, and  Nvidia Collective Communications Library (NCCL) for machine learning applications. With an EFA, HPC applications use Intel Message Passing Interface (MPI) or [...]

Elastic Fabric Adapter (EFA)2023-06-23T05:53:26+00:00

Amazon GuardDuty

2024-11-14T07:45:55+00:00

Bookmarks How It Works GuardDuty Findings Trusted IP Lists and Threat Lists Pricing Validate Your Knowledge Amazon GuardDuty Cheat Sheet An intelligent threat detection service. It analyzes billions of events across your AWS accounts from AWS CloudTrail (AWS user and API activity in your accounts), Amazon VPC Flow Logs (network traffic data), and DNS Logs (name query patterns). How It Works GuardDuty is a regional service. Threat detection categories Reconnaissance -- Activity suggesting reconnaissance by an attacker, such as unusual API activity, intra-VPC port scanning, unusual patterns of failed login requests, or [...]

Amazon GuardDuty2024-11-14T07:45:55+00:00

Amazon FSx

2023-06-23T05:59:41+00:00

Bookmarks Common Use Cases Storage Migration Limits Security Pricing Amazon FSx Cheat Sheet Amazon FSx is a fully managed third-party file system solution. It uses SSD storage to provide fast performance with low latency. There are four available FSx solutions available in AWS: Amazon FSx for Windows File Server A fully managed native Microsoft Windows file system with full support for the SMB protocol, Windows NTFS, and Microsoft Active Directory (AD) integration. How It Works Common Use Cases  File systems that is accessible by multiple users, and can establish permissions at [...]

Amazon FSx2023-06-23T05:59:41+00:00

AWS Global Accelerator

2023-06-16T22:44:21+00:00

AWS Global Accelerator Cheat Sheet A service that uses the AWS Global Network to improve the availability and performance of your applications to your local and global users.  It provides static IP addresses that act as a fixed entry point to your application endpoints in a single or multiple AWS Regions, such as your Application Load Balancers, Network Load Balancers or Amazon EC2 instances. AWS Global Accelerator continually monitors the health of your application endpoints and will detect an unhealthy endpoint and redirect traffic to healthy endpoints in less than 1 minute. How It Works Concepts An accelerator is the [...]

AWS Global Accelerator2023-06-16T22:44:21+00:00

AWS Artifact

2024-11-15T02:32:54+00:00

AWS Artifact Cheat Sheet A self-service central repository of AWS’ security and compliance reports and select online agreements. An audit artifact is a piece of evidence that demonstrates that an organization is following a documented process or meeting a specific requirement (business compliant).  AWS Artifact Reports include the following: ISO, Service Organization Control (SOC) reports,  Payment Card Industry (PCI) reports,  and certifications that validate the implementation and operating effectiveness of AWS security controls. AWS Artifacts Agreements include  the Nondisclosure Agreement (NDA)  the Business Associate Addendum (BAA), which typically is required for companies that are subject to the HIPAA Act to [...]

AWS Artifact2024-11-15T02:32:54+00:00

Amazon Macie

2024-01-18T07:31:33+00:00

Bookmarks Concepts Pricing Amazon Macie Cheat Sheet A security service that uses machine learning to automatically discover, classify, and protect sensitive data in AWS. Macie recognizes sensitive data such as personally identifiable information (PII) or intellectual property. Amazon Macie allows you to achieve the following: Identify and protect various data types, including PII, PHI, regulatory documents, API keys, and secret keys Verify compliance with automated logs that allow for instant auditing Identify changes to policies and access control lists Receive notifications when data and account credentials leave protected zones Detect when large quantities of business-critical [...]

Amazon Macie2024-01-18T07:31:33+00:00

IP Blocking: Use AWS WAF or NACL?

2023-08-14T02:45:24+00:00

What should you do if you identified a series of malicious attacks on your application coming from a specific IP address? Will you use AWS WAF to block that IP address or create a rule in your Network Access Control List to deny traffic from that IP? It is true that AWS WAF can filter web requests based on IP addresses, HTTP headers, HTTP body, or URI strings, to block common attack patterns, such as SQL injection or cross-site scripting. NACL, on the other hand, acts like a firewall for controlling traffic in and out of your subnets. If the [...]

IP Blocking: Use AWS WAF or NACL?2023-08-14T02:45:24+00:00

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering

2023-08-14T02:40:31+00:00

VPC Peering Basics In AWS, a Virtual Private Cloud (VPC) peering connection is a networking connection between two VPCs which allows you to route specific traffic between them using either private IPv4 addresses or IPv6 addresses. A VPC peering connection can be created between your own VPCs, or alternatively, a VPC in another AWS account. You can also create an inter-region VPC peering connection where the VPCs are located in different AWS Regions. Amazon EC2 Instances in either VPC can communicate with each other freely as if they are within the same network. One example of VPC Peering is the [...]

Longest Prefix Match: Understanding Advanced Concepts in VPC Peering2023-08-14T02:40:31+00:00

How to invalidate API Gateway Cache

2021-05-03T13:34:08+00:00

To invalidate an existing cache entry of a request and retrieve the latest data from the integration endpoint, one must send the request together with the Cache-Control: max-age=0 header. If the recipient is authorized to communicate directly to the integration endpoint, then the integration endpoint will respond with the latest data for the request. This also replaces the existing cache entry with the new response. The IAM Policy that grants a client to invalidate the cache follows: {   "Version": "2012-10-17",   "Statement": [     {       "Effect": "Allow",       "Action": [         "execute-api:InvalidateCache"       ],       "Resource": [ "arn:aws:execute-api:region:account-id:api-id/stage-name/GET/resource-path-specifier"       ]     }   ] }    An alternative option [...]

How to invalidate API Gateway Cache2021-05-03T13:34:08+00:00

AWS, Azure, and GCP Certifications are consistently among the top-paying IT certifications in the world, considering that most companies have now shifted to the cloud. Upskill and earn over $150,000 per year with an AWS, Azure, or GCP certification!

Follow us on LinkedIn, Facebook, or join our Slack study group. More importantly, answer as many practice exams as you can to help increase your chances of passing your certification exams on your first try!