diff --git a/.github/workflows/typos.yml b/.github/workflows/typos.yml
new file mode 100644
index 0000000..36b1c48
--- /dev/null
+++ b/.github/workflows/typos.yml
@@ -0,0 +1,19 @@
+name: Check typos
+on:
+  pull_request:
+jobs:
+  run:
+    name: Spell Check with Typos
+    runs-on: ubuntu-latest
+    steps:
+    - name: Checkout Actions Repository
+      uses: actions/checkout@v2
+    - name: Get changed files
+      id: changed-files
+      uses: tj-actions/changed-files@v41
+    - name: Check spelling of file.txt
+      if: ${{ steps.changed-files.outputs.all_changed_files != '' }}
+      uses: crate-ci/typos@master
+      with:
+        files: ${{ steps.changed-files.outputs.all_changed_files }}
+        config: ./.typos.toml
diff --git a/.typos.toml b/.typos.toml
new file mode 100644
index 0000000..51401bd
--- /dev/null
+++ b/.typos.toml
@@ -0,0 +1,14 @@
+# https://github.com/crate-ci/typos/blob/master/docs/reference.md
+
+[default.extend-words]
+# Don't correct the surname "Teh"
+Daa = 'Daa'
+CAF = 'CAF'
+
+[type.png]
+extend-glob = ["*.png"]
+check-file = false
+
+[type.jpg]
+extend-glob = ["*.jpg"]
+check-file = false
diff --git a/practice-exam/practice-exam-10.md b/practice-exam/practice-exam-10.md
index ba77ee2..08db2c9 100644
--- a/practice-exam/practice-exam-10.md
+++ b/practice-exam/practice-exam-10.md
@@ -111,7 +111,7 @@ If this practice exam has been helpful to you please share it with others and re
     </details>
 
 11. A customer is using multiple AWS accounts with separate billing. How can the customer take advantage of volume discounts with minimal impact to the AWS resources?
-    - A. Create one global AWS account and move all AWS resources to tha account.
+    - A. Create one global AWS account and move all AWS resources to that account.
     - B. Sign up for three years of Reserved Instance pricing up front.
     - C. Use the consolidated billing feature from AWS Organizations.
     - D. Sign up for the AWS Enterprise support plan to get volume discounts.
@@ -152,7 +152,7 @@ If this practice exam has been helpful to you please share it with others and re
     </details>
 
 15. According to best practices, how should an application be designed to run in the AWS Cloud?
-    - A. Use tighly coupled components.
+    - A. Use tightly coupled components.
     - B. Use loosely coupled components.
     - C. Use infrequently coupled components.
     - D. Use frequently coupled components.
diff --git a/practice-exam/practice-exam-13.md b/practice-exam/practice-exam-13.md
index 8686361..56b00fa 100644
--- a/practice-exam/practice-exam-13.md
+++ b/practice-exam/practice-exam-13.md
@@ -388,7 +388,7 @@ If this practice exam has been helpful to you please share it with others and re
     </details>
 
 1. According to best practices, how should an application be designed to run in the AWS Cloud?
-    - A. Use tighly coupled components.
+    - A. Use tightly coupled components.
     - B. Use loosely coupled components.
     - C. Use infrequently coupled components.
     - D. Use frequently coupled components.
@@ -633,7 +633,7 @@ If this practice exam has been helpful to you please share it with others and re
     </details>
 
 1. A customer is using multiple AWS accounts with separate billing. <br/>How can the customer take advantage of volume discounts with minimal impact to the AWS resources?
-    - A. Create one global AWS acount and move all AWS resources to tha account.
+    - A. Create one global AWS account and move all AWS resources to that account.
     - B. Sign up for three years of Reserved Instance pricing up front.
     - C. Use the consolidated billing feature from AWS Organizations.
     - D. Sign up for the AWS Enterprise support plan to get volume discounts.
diff --git a/practice-exam/practice-exam-8.md b/practice-exam/practice-exam-8.md
index 8c7a3c1..a2fdb3c 100644
--- a/practice-exam/practice-exam-8.md
+++ b/practice-exam/practice-exam-8.md
@@ -103,7 +103,7 @@ If this practice exam has been helpful to you please share it with others and re
     - A. AWS Control Tower.
     - B. Amazon Macie.
     - C. AWS Systems Manager Patch Manager.
-    - D. AWS Systems Manager Patch Manager and AWS Security Hub.
+    - D. AWS Security Hub.
 
     <details markdown=1><summary markdown='span'>Answer</summary>
       Correct answer: A
diff --git a/sections/security_compliance.md b/sections/security_compliance.md
index 8fdae5a..aaf92ba 100644
--- a/sections/security_compliance.md
+++ b/sections/security_compliance.md
@@ -1,6 +1,6 @@
 # Security & Compliance
 
-- [Security & Compliance](#security--compliance)
+- [Security \& Compliance](#security--compliance)
   - [AWS Shared Responsibility Model](#aws-shared-responsibility-model)
     - [Example, for RDS](#example-for-rds)
     - [Example, for S3](#example-for-s3)
@@ -290,10 +290,10 @@
 - Abusive & prohibited behaviors are:
   - Spam – receiving undesired emails from AWS-owned IP address, websites & forums spammed by AWS resources
   - Port scanning – sending packets to your ports to discover the unsecured ones
-  - DoS or DDoS attacks – AWS-owned IP addresses attempting to overwhlem or crash your servers/softwares
+  - DoS or DDoS attacks – AWS-owned IP addresses attempting to overwhelm or crash your servers/softwares
   - Intrusion attempts – logging in on your resources
   - Hosting objectionable or copyrighted content – distributing illegal or copyrighted content without consent
-  - Distributing malware – AWS resources distributing softwares to harm computers or machines
+  - Distributing malware – AWS resources distributing software to harm computers or machines
 - Contact the AWS Abuse team: AWS abuse form, or abuse@amazonaws.com
 
 ## Root user privileges