Posted On: Sep 1, 2022
Inspector has added Windows Server 2012, 2012 R2, 2016, and 2019, 2022 support for continual EC2 vulnerability scanning. Customers that have Inspector EC2 scanning already enabled and the AWS Systems Manager (SSM) agent installed and configured, do not need to take any additional actions. Windows instances will now automatically and continually be scanned for software vulnerabilities and unintended network exposure. New customers can get started with Inspector with a single click in the AWS Management Console to start assessing for software vulnerabilities in their EC2 instances, both Windows and Linux, along with their container images in the Amazon Elastic Container Registry (ECR). A complete list of operating systems supported by Inspector can be found here.
Amazon Inspector is a vulnerability management service that continually scans AWS workloads for software vulnerabilities and unintended network exposure. With Amazon Inspector you can enable the service across your organization with a single click in the AWS Management Console. Once enabled, Inspector automatically discovers all of your EC2 workloads and intelligently scans them for software vulnerabilities and unintended network exposure. Inspector also supports Amazon ECR, allowing for a consolidated view of vulnerabilities across your Amazon EC2 instances and container images residing in ECR. Inspector uses the widely-adopted Amazon Systems Manager (SSM) agent for EC2 vulnerability scanning, eliminating the need to deploy a stand-alone security agent for software vulnerability assessments. Inspector provides a highly contextualized vulnerability risk score by correlating vulnerability information with environmental factors such as external network accessibility to help you prioritize the highest risks to address. Inspector security findings are presented in the Inspector console, routed to Amazon Security Hub, and pushed to Amazon EventBridge to make it easier to integrate with existing security tooling and workflow systems.
Amazon Inspector is generally available globally across 19 commercial regions, Asia Pacific (Singapore), Asia Pacific (Sydney), Asia Pacific (Hong Kong), Asia Pacific (Tokyo), Asia Pacific (Seoul), Asia Pacific (Mumbai), US East (Ohio), US East (N. Virginia), US West (Oregon), US West (N. California), Canada (Central), Europe (Ireland), Europe (Frankfurt), Europe (Stockholm), Europe (Milan), Europe (London), Europe (Paris), Middle East (Bahrain), South America (Sao Paulo). Visit the AWS Regional Services list for details. All accounts can scan their environment for vulnerabilities with a free 15-day trial of the new Amazon Inspector.