Search results
People also ask
What is Amazon Inspector?
What is AWS Inspector?
How do I activate Amazon Inspector?
How does Amazon Inspector integrate with other services and systems?
Amazon Inspector is a vulnerability management service that automatically discovers workloads and continually scans them for software vulnerabilities and unintended network exposure. Amazon Inspector discovers and scans Amazon EC2 instances, container images in Amazon ECR, and Lambda functions.
- Amazon Inspector Dashboard
Critical findings. The Critical findings section provides a...
- Getting Started With Amazon Inspector
For more information, see Automated scan types for Amazon...
- Exporting Findings Reports From Amazon Inspector
After Amazon Inspector encrypts your findings data, it...
- Exporting Sboms With Amazon Inspector
Enter a AWS KMS key configured for Amazon Inspector to use...
- AWS Managed Policies
Amazon Inspector has added new permissions that allow Amazon...
- Amazon Inspector Integrations
Amazon Inspector integrates with other AWS services. These...
- Finding Types in Amazon Inspector
Amazon Inspector can generate Code vulnerability findings...
- How AWS Inspector Works With IAM
"Resource": "*" To see a list of Amazon Inspector resource...
- Amazon Inspector Dashboard
Amazon Inspector scans AWS workloads such as EC2, Lambda, and containers for software vulnerabilities and network exposure. It helps prioritize remediation, manage SBOM, and meet compliance requirements.
Learn how to use Amazon Inspector, a service that assesses your AWS resources for security vulnerabilities and compliance issues. Find user guides, API references, and CLI commands for both Amazon Inspector and Amazon Inspector Classic.
Amazon Inspector is a service that scans AWS workloads for software vulnerabilities and unintended network exposure. It provides a risk score, integration with AWS Security Hub and EventBridge, and support for CIS Benchmarks and SBOM exports.
- Agent-Based Scanning
- Agentless Scanning
- Managing Scan Mode
- Excluding Instances from Amazon Inspector Scans
- Supported Operating Systems
- GeneratedCaptionsTabForHeroSec
Agent-based scans are performed continuously using the SSM agent on all eligible instances. For agent-based scans, Amazon Inspector uses SSM associations, and plugins installed through these associations, to collect software inventory from your instances. In addition to package vulnerability scans for operating system packages, Amazon Inspector age...
Amazon Inspector uses the agentless scanning method on eligible instances when your account is in hybrid scanning mode. Hybrid scanning mode includes agent-based and agentless scans and is automatically enabled when you activate Amazon EC2 scanning. For agentless scans, Amazon Inspector uses EBS snapshots to collect a software inventory from your i...
Your EC2 scan mode determines which scan methods Amazon Inspector will use when performing EC2 scans in your account. You can view the scan mode for your account from the EC2 scanning settings page under General settings. Standalone accounts or Amazon Inspector delegated administrators can change the scan mode. When you set the scan mode as the Ama...
You can tag certain instances to exclude them from Amazon Inspector scans. Excluding instances from scans can help prevent unactionable alerts. You are not charged for excluded instances. To exclude an EC2 instance from scans, tag that instance with the following key: Value is optional. For more information about adding tags, see Tag your Amazon EC...
Amazon Inspector scans supported Mac, Windows, and Linux EC2 instance for vulnerabilities in operating system packages. For Linux instances, Amazon Inspector can produce findings for application programming language packages using Amazon Inspector deep inspection for Linux-based Amazon EC2 instances. For Mac and Windows instances only operating sys...
Learn how Amazon Inspector extracts metadata from your EC2 instance and compares it against rules from security advisories. Find out how to configure the SSM agent, activate agent-based or agentless scan methods, and view scan findings.
Learn about Amazon Inspector, an automated vulnerability management service that scans EC2, Lambda, and container images for software vulnerabilities and network exposure. Find answers to common questions about features, benefits, pricing, and migration.
Feb 23, 2024 · AWS Inspector is a vulnerability scanning service by AWS that is used to scan your EC2 instances, container images, and Lambda functions. Its findings will report vulnerabilities known as CVE’s...
