Amazon Inspector Reviews

Name: Amazon Inspector
Brand: Amazon Web Services (AWS)
Rating: 4.1 (7 reviews)

4.1 out of 5

7 reviews
87% willing to recommend

What is Amazon Inspector?

Amazon Inspector is an automated security assessment service that helps improve the security and compliance of applications deployed on AWS. Amazon Inspector automatically assesses applications for exposure, vulnerabilities, and deviations from best practices. After performing an assessment, Amazon Inspector produces a detailed list of security findings prioritized by level of severity. These findings can be reviewed directly or as part of detailed assessment reports which are available via the Amazon Inspector console or API.

Get the Amazon Inspector Buyer's Guide and find out what your peers are saying about Amazon Inspector, Wiz, Microsoft Defender for Cloud and more!

Amazon Inspector is the #6 ranked solution in top IT Vendor Risk Management solutions and #20 ranked solution in top Vulnerability Management solutions. PeerSpot users give Amazon Inspector an average rating of 8.2 out of 10. Amazon Inspector is most commonly compared to Wiz: Amazon Inspector vs Wiz. Amazon Inspector is popular among the large enterprise segment, accounting for 66% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a computer software company, accounting for 13% of all views.

Helped 841,431 peers since 2012

Featured Amazon Inspector reviews

John D'Arcy

Co-Founder, Professional AWS Cloud Architect at a tech services company with 1-10 employees

The most valuable features probably are the ability to do automated vulnerability assessments, which it does with Amazon Inspector version two. It operates continuously, so as soon as resources are created, it scans them for vulnerabilities. This allows me to pinpoint potential security vulnerabilities and provide actionable recommendations relatively quickly. Larger enterprises usually use Inspector to gather all the vulnerabilities, the CVEs, across all accounts in an AWS organization. The enterprises I work for typically have many accounts in their organization, such as thousands of accounts where I am at the moment. It is a way to gather the vulnerabilities that are present on EC2 instances, container images, and Lambda functions.

Read full review

Tharun Yarramreddy

DevOps Engineer at Vitrana

With Amazon Inspector, I can automate vulnerability management. When enabled with Security Hub, it also provides a comprehensive dashboard. The service detects software vulnerabilities and provides solutions to address them. After scheduling scans, it gives detailed reports that help prioritize issues. This automation means I don't need constant manual supervision.

Read full review

Johnny Suleiman

MS AWS expert at Bespin Global MEA, an e& enterprise Company

Amazon Inspector is used for vulnerability assessment and provides detailed reports for infrastructure security. It's primarily used for vulnerability assessments and scans multiple types of resources, providing a report with findings and CVEs Amazon Inspector impacts operations primarily from a…

Read full review

Amazon Inspector mindshare

Product category:

As of March 2025, the mindshare of Amazon Inspector in the Vulnerability Management category stands at 2.5%, up from 1.0% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Vulnerability Management

PeerAnalyst reports based on Amazon Inspector reviews

Type	Title	Date
Category	Vulnerability Management	Mar 13, 2025	Download
Product	Reviews, tips, and advice from real users	Mar 13, 2025	Download
Comparison	Amazon Inspector vs Wiz	Mar 13, 2025	Download
Comparison	Amazon Inspector vs Cortex Cloud by Palo Alto Networks	Mar 13, 2025	Download
Comparison	Amazon Inspector vs Qualys VMDR	Mar 13, 2025	Download

Title	Rating	Mindshare	Recommending
Wiz	4.5	13.5%	100%	20 interviews Add to research
Microsoft Defender for Cloud	4.0	6.7%	94%	74 interviews Add to research

Valuable Features

Amazon Inspector's automated vulnerability detection is highly valued, efficiently identifying vulnerabilities in AWS workloads, EC2 instances, and container images. It offers continuous scanning, prioritizing critical issues with detailed reporting. Users appreciate its consolidated view, integration with Security Hub, and support for compliance standards like HIPAA, PCI, and CIS. The categorization of findings by instance, container, and Lambda function enhances security management across numerous accounts within large AWS organizations.

"I recommend Amazon Inspector because it allows the automation of processes and requires less manual monitoring."
"The scalability of the solution itself is unparalleled."
"It operates continuously, so as soon as resources are created, it scans them for vulnerabilities."

Room for Improvement

Amazon Inspector needs improvements in on-demand scanning and broader detection coverage. Integration with Amazon's patching services and better reporting features are desired. Users face challenges with agent dependency and seek real-time protection. Improvements in automation, especially with CloudWatch, are suggested. The limited scope only covering EC2 instances, lack of reserved capacity for EBS volumes, and the need for custom vulnerability checks are noted. Better management of export features would be beneficial.

"There are challenges associated with the interdependencies in AWS services, like requiring an Active Directory for other services, resulting in additional charges."
"The other point is that the reporting features of Inspector need improvement. For example, I am in an organization with millions of CVEs, and getting an overview of all this is challenging."
"It has automated vulnerability assessment, yet I seek more flexibility in defining custom vulnerability checks tailored to my needs, which is more difficult."

Pricing

Amazon Inspector offers a tiered pricing model, scaling with usage. For light usage, it can be free, with costs increasing with additional tiers peaking around $5,000 to $6,000 for extensive use across thousands of accounts. The pricing is transparent and competitive, perceived as affordable by most users. It operates on a pay-per-scan basis with no additional costs, aligning with market standards. Some users find costs can rise due to dependencies and lack of reserved capacity options.

"The lowest cost would be around $10 for a few small accounts, however, for thousands of accounts, it could be around $5000 to $6000 dollars per month."
"The pricing is very transparent and clear."
"It's priced according to market standards for its services."

Popular Use Cases

Amazon Inspector is used for automated vulnerability detection in cloud environments, primarily scanning deployable containers and EC2 instances. Organizations leverage it for its integration with AWS services like ECR and EC2, providing continuous hourly scans and detailed security reports. It aids in maintaining security posture by pulling vulnerability details into environments. Many groups use it alongside third-party tools and integrate with SIEM solutions for enhanced threat detection and compliance tracking.

Service and Support

Customer service and support for Amazon Inspector vary based on subscription level. Premium users receive quick assistance, while others still report good support. Response times depend on support tier. Users note that the service rarely requires support, suggesting high reliability. Ratings range from six to eight out of ten. There have been occasional lag issues related to CVE management, yet users describe technical support experiences positively.

Deployment

Amazon Inspector's initial setup is quick and straightforward. Users describe it as a one-click process, involving enabling within the account or organization. It provides a consistent user experience similar to other native Amazon services. Knowledge of IAM policies and roles might be needed, but AWS blogs offer helpful guidance. Single accounts take minutes, while multiple accounts may require additional configuration for centralized visibility. Some rate it nine or ten out of ten for ease of deployment.

Scalability

Amazon Inspector is recognized for solid scalability, effectively handling microservice environments and large-scale production. Users deploy it across extensive AWS environments, often rating its scalability highly, noting AWS infrastructure supports this capability. Engineering and security teams regularly utilize Amazon Inspector, integrating it into ECR pipelines with frequent scans. Its robust performance matches large infrastructures, although specific scalability limitations may arise with increased CVEs. It frequently outshines competing tools in expansive setups.

Stability

Amazon Inspector maintains high stability with no reported downtime or issues. Rated ten out of ten for its reliability, organizations benefit from continuous scanning capabilities in version two, aiding security and administration. Partnerships with AWS provide robust support, ensuring prompt handling of critical vulnerabilities. This steadfast performance positively impacts business operations.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Amazon Inspector Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Computer Software Company

13%

Financial Services Firm

12%

Government

Manufacturing Company

University

Insurance Company

Healthcare Company

Comms Service Provider

Retailer

Performing Arts

Recreational Facilities/Services Company

Educational Organization

Non Profit

Construction Company

Media Company

Transportation Company

Energy/Utilities Company

Consumer Goods Company

Wholesaler/Distributor

Real Estate/Law Firm

Logistics Company

Pharma/Biotech Company

Hospitality Company

Outsourcing Company

Aerospace/Defense Firm

Legal Firm

Compare Amazon Inspector with alternative products

Learn more about Amazon Inspector

Amazon Inspector security assessments help you check for unintended network accessibility of your Amazon EC2 instances and for vulnerabilities on those EC2 instances. Amazon Inspector assessments are offered to you as pre-defined rules packages mapped to common security best practices and vulnerability definitions. Examples of built-in rules include checking for access to your EC2 instances from the internet, remote root login being enabled, or vulnerable software versions installed. These rules are regularly updated by AWS security researchers.