Overview
Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. It continuously scans AWS workloads for software vulnerabilities and unintended network exposure.
Amazon Inspector là dịch vụ đánh giá bảo mật tự động, giúp tăng cường bảo mật và tuân thủ cho các ứng dụng triển khai trên AWS. Dịch vụ liên tục quét các workload trên AWS để phát hiện lỗ hổng phần mềm và các vấn đề phơi bày mạng không mong muốn.
Key Features
- Automated vulnerability management: Continuously scans Amazon EC2, Lambda, and container workloads to detect known software vulnerabilities (CVEs).
- Network exposure analysis: Identifies unintended network exposure that could allow external attacks.
- Integration with AWS services: Deep integration with Amazon ECR, AWS Security Hub, and Amazon EventBridge for automated workflows.
- Risk scoring and prioritization: Provides contextual risk scores to help prioritize remediation efforts based on exploitability and impact.
- Agentless scanning for containers: Scans container images in Amazon Elastic Container Registry (ECR) without requiring an agent.
Links
Related Services
Amazon VPC
Network isolation and security
Elastic Load Balancing
Distribute incoming traffic
Amazon EBS
Persistent block storage volumes