Skip to content

epomatti/aws-inspector

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.assets
.assets
 
 
.gitignore
.gitignore
 
 
.terraform.lock.hcl
.terraform.lock.hcl
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ecrBuildPush.bash
ecrBuildPush.bash
 
 
lambda.zip
lambda.zip
 
 
main.tf
main.tf
 
 
output.tf
output.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

AWS Inspector

Amazon Inspector vulnerability scan.

👉 Before you start, set up these services manually:

  • Use the Console to enable Inspector.
  • Fleet Manager to managed EC2 instances, Default Host Management is enough for testing.

Create the test resources:

terraform init
terraform apply -auto-approve

The configuration will create the following resources:

  • Lambda
  • ECR
  • EC2

To scan an ECR image, upload one if none is available:

bash ecrBuildPush.bash

If all goes well, coverage should be 100% for all environments created by this config:

The EC2 instance should be found by the Fleet Manager:

For ECR, vulnerabilities should be shown on Inspector as well:

About

Amazon Inspector vulnerability management

Topics

aws lambda ec2 terraform ssm aws-security ecr aws-inspector systems-manager

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages