Explore cloud deployment models: cloud, on premises (private cloud), and hybrid, detailing ownership, scale, access, and how to integrate cloud resources with legacy on premises systems.

Cloud computing replaces upfront data center costs with variable, pay-for-what-you-use resources, reduces maintenance, and scales capacity on demand for faster, globally low-latency deployment.

Create an AWS free tier account to explore services free of charge within limits, including 12 month free tier, always free, and short term trials with EC2, S3, and RDS.

Sign in to your AWS account, explore the AWS console and services, understand root vs IAM access, and review regions, cost management, and core services.

The AWS Cloud Adoption Framework (AWS CAF) guides digital transformation and cloud migration through six foundational perspectives, 47 capabilities, four transformation domains, and four iterative phases: envision, align, launch, scale.

Explore the six hours of migration framework—rehost, replatform, repurchase, retire, retain, and refactor—used to categorize cloud moves from lift-and-shift to refactoring, with RDS and hybrid examples.

Explore how the AWS application discovery service inventories on-prem data, maps workloads, and exports data for migration planning, using agentless or agent-based discovery with encrypted data for data-driven planning.

Explore how AWS Migration Hub provides a centralized dashboard to monitor migrations from on premises to the cloud, with a unified view across databases, servers, data centers, and tools.

Explore AWS Compute Optimizer, a machine learning driven service that analyzes resource usage to recommend optimal EC2 instance types, autoscaling, EBS, and Lambda configurations for cost, performance, and resilience.

Amazon elastic compute cloud (EC2) as a flexible virtual server on AWS, offering elastic web scale computing, full control, and seamless integration with S3, RDS, and VPC.

Learn how to launch, connect, and use EC2 instances with AMIs or custom AMIs, choose instance types, and manage security, networking, and storage features.

Explore how Amazon EC2 instance types balance cpu, memory, storage, and networking to fit diverse workloads, including general purpose, compute optimized, memory optimized, storage optimized, and accelerated computing instances.

Explore Amazon EC2 pricing models, including on-demand, savings plans, reserved and spot instances, and dedicated hosts, and learn how to optimize compute costs.

Explore how AWS EC2 scalability uses auto scaling groups to add or remove instances, dynamically or predictively, ensuring availability while you pay only for used resources.

Learn how load balancing distributes traffic across servers to improve availability, scalability, security, and performance, and explore application, network, DNS, and global server load balancing, plus hardware or software solutions.

Explore how Amazon elastic load balancer automatically distributes incoming traffic across multiple EC2 instances in an auto scaling group, ensuring even load and scalable capacity.

Explore messaging and message queues in application architecture, learning how producers and consumers exchange messages, why queues prevent loss, and how AWS services support reliable queuing.

Compare monolithic applications with microservices, highlighting independent, loosely coupled components and how microservices enable continued operation on aws cloud deployments.

Explore Amazon simple notification service, a managed publish-subscribe system that decouples publishers from subscribers via topics and delivers messages to endpoints like SQS, Lambda, HTTP, email, SMS, and push notifications.

Explore the shift from traditional server computing to serverless computing, where a cloud provider manages servers, patches, and security, enabling you to focus on building scalable applications.

Discover AWS Lambda, a serverless, event-driven compute service that runs code without provisioning servers, is triggered by events, and charges only for invocations with automatic resource management.

Explore AWS Batch, a managed service that plans, schedules, and runs batch workloads across ECS, Fargate, and Spot or on-demand resources, packaging code and submitting jobs via Console, CLI.

Explore how AWS edge locations, data centers worldwide, deliver low-latency services by caching content with CloudFront. Experience Route 53 DNS responses and AWS networks route requests to users for access.

Explore how to provision, configure, and manage AWS resources using APIs, the management console, the CLI, and SDKs, plus Elastic Beanstalk and CloudFormation.

Model and provision AWS resources using CloudFormation templates, enabling infrastructure as code. Define stacks that describe EC2, RDS, MySQL, Lambda, and S3 to deploy apps safely and repeatedly.

Run compute and storage on premises with AWS outposts, extending an AWS region to your site and delivering the same APIs, tools, and infrastructure as the cloud.

Explore how AWS Wavelength brings AWS cloud services to the edge of the 5G network, enabling ultra-low latency for real-time gaming, AR/VR, and IoT.

Explore AWS connectivity options to link on-premises and cloud resources. See how VPC, Direct Connect, VPN, ELB, Route 53, Transit Gateway, Global Accelerator, CloudFront, and API Gateway enable secure networks.

Understand Amazon Virtual Private Cloud (VPC) as an isolated AWS network with IP addresses, subnets, route tables, and gateways, enabling public and private resources secured by security groups and ACLs.

Defines subnets in a VPC as public, private, or VPN-only across availability zones. Shows how public subnets connect to the internet gateway and private subnets protect databases.

Learn how AWS Direct Connect creates a private, dedicated link from your data center to your VPC, keeping traffic off the public internet and boosting performance.

Discover how access control lists (ACLs) act as virtual firewalls in a VPC, guarding subnets by filtering inbound and outbound traffic with default and custom rules and explicit denies.

Learn how stateless packet filtering with network ACLs checks inbound and outbound packets at subnet borders without remembering previous traffic, ensuring allow or deny decisions by rule sets.

Explore how Amazon Route 53 provides dns resolution, domain registration, health checks, and a rest api to route traffic to healthy endpoints, whether in AWS or external resources.

Amazon API Gateway is a fully managed service that lets you create, deploy, and monitor rest and WebSocket APIs at any scale, acting as the front door to backend services.

Explore Amazon CloudFront, a content delivery network that speeds web content with edge locations, offers ddos protection, ssl tls, lambda at edge, and use cases from static assets to streaming.

Discover how AWS Global Accelerator boosts availability and performance by routing traffic over the AWS global network to endpoints with static IP addresses, health checks, endpoint weights, and traffic dials.

Explore the three cloud storage types—object, file, and block—and their use cases for unstructured data, scalability, and cost efficiency. Learn about durability, access controls, and encryption in cloud storage.

Understand how EBS snapshots save point-in-time copies of volumes in S3 via incremental backups, storing only changed blocks, enabling efficient restores and creation of new volumes across availability zones.

Learn to create, attach, and initialize EBS volumes to an EC2 instance, take snapshots, and build and launch an AMI for reproducible cloud infrastructure.

Explore Amazon S3, an object storage service optimized for scalability, availability, security, and performance; learn about buckets, object keys, metadata, versioning, and multipart uploads.

Learn how Amazon S3 stores data as objects in buckets, each with a key and metadata, and how versioning, access control, bucket policies, and access points secure and manage access.

Explore creating an S3 bucket in the AWS console, including bucket name rules, region selection, and access settings. Then upload files, manage objects, and explore storage classes.

Explore elastic file system (efs), a fully managed, scalable Linux file system that auto scales from gigabytes to petabytes. It supports standard or infrequent access and bursting throughput.

Compare S3, EBS, and EFS as object, block, and file storage options, then choose based on latency, durability, availability, throughput, and typical use cases.

Explore Amazon Storage Gateway, a hybrid cloud storage service that provides on premises access to cloud storage with low latency caching and secure data transfer for backups and disaster recovery.

Explore the fundamentals of databases, contrast relational databases with NoSQL types, and learn core concepts like tables, keys, normalization, SQL, and schema, with a preview of Amazon RDS.

Discover AWS Redshift, a fully managed, petabyte-scale data warehousing service that delivers high-performance analytics for real-time BI and reporting via columnar storage and MPP.

Explore how amazon dynamodb, a fully managed key-value and document database, delivers single-digit millisecond performance at any scale with multi-region and multi-master capabilities, security, backup, restore, and in-memory caching.

Explore AWS data migration service (DMS) with replication instances, endpoints, and migration tasks to migrate data between databases, supporting homogeneous and heterogeneous migrations and streaming to Redshift, DynamoDB, or S3.

Speed up web apps with a fully managed in-memory cache service, Amazon Elastic Cache, supporting memcached and Redis, and enabling fast session stores, real-time analytics, and pub/sub messaging.

Explore Amazon Athena, a serverless interactive query service that analyzes data directly in S3 using standard SQL, with integration to the AWS Glue data catalog and pay-per-query pricing.

Explore Amazon Elastic MapReduce (EMR), a big data platform for fast analytics using Spark, Hadoop, Flink, Presto, offering easy cluster setup, scalable resources, and integration with S3, DynamoDB, Redshift.

Understand the AWS security landscape through the shared responsibility model and IAM, security groups, and ACLs, with encryption and key management via KMS, CloudTrail and GuardDuty for protection and compliance.

Learn how the AWS account root user wields full access, and follow best practices by using IAM users with granular permissions and multi-factor authentication for secure programmatic access.

Understand IAM users in AWS: create named users with unique credentials and up to two access keys for API, CLI, or SDK, for secure, auditable access instead of root.

Explore IAM policies defining permissions using JSON statements with effect, action, resources, and conditions. Learn identity-based and resource-based policies, permission boundaries, SCPs, policy evaluation logic, access analyzer, and least privilege.

Explore how AWS Organizations centralizes governance across accounts, applies service control policies, and groups accounts into organizational units to enforce compliance, automate setup, and share resources across accounts.

Discover AWS Artifact, a fully managed service that provides a centralized repository of compliance reports. Access SOC, PCI DSS, ISO, and FedRAMP documentation to verify security controls and support audits.

Learn how denial-of-service and DDoS attacks overwhelm websites with botnets, and how AWS shield, elastic load balancing, and auto scaling mitigate outages and protect sales.

Explore AWS KMS, a managed service for creating and controlling cryptographic keys used to encrypt and decrypt data across services, with centralized management, access controls, and automatic key rotation.

Protect web applications with AWS WAF by creating configurable web ACLs that block or monitor requests, defend against SQL injection and XSS, and integrate with other AWS services.

Amazon inspector is a fully automated security assessment service for AWS EC2. It uses assessment targets and rule packages to generate findings for remediation and continuous monitoring in DevOps workflows.

GuardDuty continuously monitors for malicious or unauthorized behavior to protect AWS accounts with threat intelligence feeds, machine learning, and analysis of CloudTrail, VPC flow logs, and DNS logs.

Discover how AWS Audit Manager automates evidence collection and continuous monitoring to simplify regulatory compliance, with prebuilt and custom frameworks for GDPR, PCI DSS, and HIPAA.

Provision, manage, and deploy SSL/TLS certificates for AWS services and internal resources with AWS Certificate Manager (ACM). Benefit from automatic renewal, domain validation, private CA, dashboard, and secure key management.

Explore AWS cloud HSM, a managed hardware security module that securely stores cryptographic keys in the cloud and meets regulatory requirements with Fips 142, level three validated HSMs. Integrate using PKCS, Java cryptography extension, or Microsoft crypto libraries, with high availability, backups, scalable performance, and auditing for data encryption, digital signatures, and PKI.

Explore Amazon Detective, a security service that collects log data from AWS resources and uses machine learning and graph theory to quickly investigate and identify root causes.

Explore aws directory service and its options—aws managed Microsoft Active Directory, Simple AD, AD Connector, and Amazon Cognito with Active Directory integration—along with features like multifactor authentication and encryption.

Centralize firewall rule management across all your AWS accounts and applications with AWS firewall manager, integrating AWS WAF, AWS Shield Advanced, and VPC security groups for cross-account protection and compliance.

Explore how AWS IAM Identity Center provides cloud-based single sign-on, centralizing access to multiple AWS accounts and business apps via a single user portal, with MFA.

Explore AWS Network Firewall, a fully managed, scalable protection for all VPCs with stateful and stateless rules, intrusion detection, centralized rule management, and integration with CloudWatch and CloudFormation.

Discover AWS Security Hub, a security management service that centralizes findings from GuardDuty, Inspector, Firewall Manager, and partners, enabling automated compliance checks, multi-account management, and actionable insights against security benchmarks.

Monitor your AWS environment to optimize performance, ensure availability, enhance security, and support regulatory compliance using CloudWatch, X-Ray, Trusted Advisor, and CloudTrail, while reducing downtime and costs.

Learn how Amazon CloudWatch provides monitoring and observability for AWS resources by collecting metrics and logs, setting alarms, and automating actions.