Amazon Inspector's automated vulnerability detection is highly valued, efficiently identifying vulnerabilities in AWS workloads, EC2 instances, and container images. It offers continuous scanning, prioritizing critical issues with detailed reporting. Users appreciate its consolidated view, integration with Security Hub, and support for compliance standards like HIPAA, PCI, and CIS. The categorization of findings by instance, container, and Lambda function enhances security management across numerous accounts within large AWS organizations.
- "I recommend Amazon Inspector because it allows the automation of processes and requires less manual monitoring."
- "The scalability of the solution itself is unparalleled."
- "It operates continuously, so as soon as resources are created, it scans them for vulnerabilities."
Amazon Inspector needs improvements in on-demand scanning and broader detection coverage. Integration with Amazon's patching services and better reporting features are desired. Users face challenges with agent dependency and seek real-time protection. Improvements in automation, especially with CloudWatch, are suggested. The limited scope only covering EC2 instances, lack of reserved capacity for EBS volumes, and the need for custom vulnerability checks are noted. Better management of export features would be beneficial.
- "There are challenges associated with the interdependencies in AWS services, like requiring an Active Directory for other services, resulting in additional charges."
- "The other point is that the reporting features of Inspector need improvement. For example, I am in an organization with millions of CVEs, and getting an overview of all this is challenging."
- "It has automated vulnerability assessment, yet I seek more flexibility in defining custom vulnerability checks tailored to my needs, which is more difficult."
