AWS Inspector

AWS Inspector scans applications and resources to detect vulnerabilities and security misconfigurations. It focuses on finding vulnerabilities in applications and network security issues.

It works with both EC2 instances and container images in Amazon ECR to identify potential software vulnerabilities and to categorize the severity of the vulnerabilities.

Common Use Case Example

A company wants to proactively scan its EC2 instances and RDS databases for known vulnerabilities, outdated software packages, exposed ports, and open security group ports to prevent exploitation.