AWS Certified Cloud Practitioner Exam: Amazon Inspector Network Accessibility Checks

Amazon Inspector Network Accessibility Checks

Question

On which of the following resources does Amazon Inspector perform network accessibility checks?

Answers

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

Correct Answer - C.

Amazon Inspector provides two types of packages.

Network reachability rules package checks network accessibility checks on Amazon EC2 instance.

Host assessment rules package checks vulnerabilities on Amazon EC2 instance.

Options A, B & D are incorrect as Amazon Inspector performs network accessibility checks on Amazon EC2 instance, not on Amazon CloudFront, Amazon VPN or Amazon VPC.For more information on Amazon Inspector, refer to the following URL:

https://aws.amazon.com/inspector/faqs/

Amazon Inspector is a security assessment service offered by AWS that enables you to assess the security and compliance of your applications running on Amazon EC2 instances. It checks your applications for security vulnerabilities, deviations from best practices, and any security-related deviations from industry standards.

When you run an Amazon Inspector assessment, it performs several types of security checks on your EC2 instances. One of these checks is network accessibility checks. These checks help you to identify any vulnerabilities in the network configuration of your instances that could allow unauthorized access or data exfiltration.

The resources on which Amazon Inspector performs network accessibility checks are EC2 instances. It assesses the security of the instances by testing their network accessibility from the outside world. It checks whether the instances are visible on the network, whether they are accessible from specific ports, and whether they are vulnerable to common attacks such as cross-site scripting (XSS) and SQL injection.

Therefore, the correct answer to this question is C. Amazon EC2 instance. Amazon CloudFront is a content delivery network service; Amazon VPN is a virtual private network service; and Amazon VPC is a virtual private cloud service. Although these services are related to networking, they are not the resources on which Amazon Inspector performs network accessibility checks.