Amazon Web Services announced that Amazon Inspector is now out of preview and is generally available to all AWS customers. This is a security vulnerability assessment service that helps improve the security and compliance of applications deployed on EC2.
As Amazon’s Craig Liebendorfer explains in a post on the Amazon Web Services Security Blog, it does so by “identifying potential security issues, vulnerabilities, or deviations from security standards.”
You pay only for the assessments you run, and the first 250 are free for your first ninety days.
“Amazon Inspector automatically assesses applications for vulnerabilities or deviations from best practices, and then produces a detailed list of security findings prioritized by level of severity,” Amazon says. “Amazon Inspector includes a knowledge base of hundreds of rules mapped to common security standards and vulnerability definitions that are regularly updated by AWS security researchers.”
No additional software licenses are required, and there are no maintenance fees. There’s also no need to buy expensive hardware.
“You only pay for what you use, and it provides the flexibility to support popular use cases like continuous deployment or auto scaling, where per-host or per-IP licensing models can be difficult to manage. Amazon Inspector includes a 90-day free trial,” Amazon says.
More details on Amazon Inspector are available here.