Skip to content

AWS Solution Architect Professional - Concept Notes

Inspector & Config

AWS Solution Architect Professional - Concept Notes

Inspector & AWS Config

Salient Features of Inspector

Automated Security Assessments
For EC2 instances and Containers on ECR

For EC2 instances

Leveraging the AWS System Manager (SSM) agent
Analyze against unintended network accessibility
Analyze the running OS against known vulnerabilities

For Containers push to Amazon ECR

Assessment of containers as they are pushed

Salient Features of AWS Config

Helps with auditing and recording compliance of your AWS resources
AWS Config Rules does not prevent actions from happening (no deny)
Per region service, but can be aggregated across regions