When Rapid7 InsightVM or Nexpose customers want to detect vulnerabilities like missing patches and old operating systems in their AWS EC2 instances, one option is to use this scan engine. This listing is for a version of our standard scan engine that has been modified specifically for use in AWS environments. It leverages the Dynamic Discovery feature of InsightVM, which continuously detects when EC2 instances are added or removed from your AWS environment. The engine uses this information to ensure it scans every active EC2 instance and only EC2 instances that belong to you.

Customers can use this scan engine to scan across multiple VPCs, as long as traffic can flow between the scan engine's VPC and the target (e.g. VPC peering). If your VPCs are isolated, you will need to install a separate engine in each VPC you want to scan. This version of the scan engine can only be used to conduct internal scans of AWS infrastructure.