Amazon Inspector
- check EC2 instances & instance OS & containers for their vulnerabilities and deviations against best practice
- provides a report of findings ordered by priority
- Rules packages determine what is checked
- network assessment (agentless)
- network reachability from end to end
- the port
- network & host assessment (agent)
- Use common vulnerabilities and exposures (CVE)
- center for internet security (CIS) benchmarks
- security best practices for amazon inspector
- network assessment (agentless)