Exam AWS Certified Solutions Architect - Associate SAA-C03 topic 1 question 315 discussion

AWS Shield for DDOS Amazon Macie for discover and protect sensitive date Amazon GuardDuty for intelligent thread discovery to protect AWS account Amazon Inspector for automated security assessment. like known Vulnerability

Whenever I feel vulnerable, I use AWS Inspector..

Amazon Inspector for automated security assessment. like known Vulnerability

AWS Shield for DDOS Amazon Macie for discover and protect sensitive date Amazon GuardDuty for intelligent thread discovery to protect AWS account Amazon Inspector for automated security assessment. like known Vulnerability

vulnerabilities = Amazon Inspector malicious activity = Amazon GuardDuty

Enable Amazon Inspector Deploy Inspector agents to EC2 instances Use Lambda to generate and distribute vulnerability reports The key points: Migrate on-prem apps with vulnerabilities to EC2 Need active scanning of EC2 instances for vulnerabilities Require reports on findings

Amazon Inspector: • Performs active vulnerability scans of EC2 instances. It looks for software vulnerabilities, unintended network accessibility, and other security issues. • Requires installing an agent on EC2 instances to perform scans. The agent must be deployed to each instance. • Provides scheduled scan reports detailing any findings of security risks or vulnerabilities. These reports can be used to patch or remediate issues. • Is best suited for proactively detecting security weaknesses and misconfigurations in your AWS environment.

Amazon Inspector is a vulnerability scanning tool that you can use to identify potential security issues within your EC2 instances. It is a kind of automated security assessment service that checks the network exposure of your EC2 or latest security state for applications running into your EC2 instance. It has ability to auto discover your AWS workload and continuously scan for the open loophole or vulnerability.

Amazon Inspector is a vulnerability scanning tool that you can use to identify potential security issues within your EC2 instances. Guard Duty continuously monitors your entire AWS account via Cloud Trail, Flow Logs, DNS Logs as Input.

:) C is the correct https://cloudkatha.com/amazon-guardduty-vs-inspector-which-one-should-you-use/

https://cloudkatha.com/amazon-guardduty-vs-inspector-which-one-should-you-use/

Amazon Inspector is a security assessment service that helps to identify security vulnerabilities and compliance issues in applications deployed on Amazon EC2 instances. It can be used to assess the security of applications that are deployed on Amazon EC2 instances, including those that are custom-built. To use Amazon Inspector, the Amazon Inspector agent must be installed on the EC2 instances that need to be assessed. The agent collects data about the instances and sends it to Amazon Inspector for analysis. Amazon Inspector then generates a report that details any security vulnerabilities that were found and provides guidance on how to remediate them. By configuring an AWS Lambda function, the company can automate the generation and distribution of reports that detail the findings. This means that reports can be generated and distributed as soon as vulnerabilities are detected, allowing the company to take action quickly.

I'm a little confused on how someone came up with C, it is definitely D.

Amazon Inspector

I think D

Inspector for EC2

Ddddddd