Which of the following AWS services have the "Network Reachability" rules package which helps in running network port-scanning tools to test routing and firewall configurations and then validate what processes are listening on your instance network ports before finally mapping the IPs identified in the port scan back to the host's owner?
Click on the arrows to vote for the correct answer
A. B. C. D.Answer - A.
The AWS Documentation mentions the following.
Performing network security assessments allow you to understand your cloud infrastructure and identify risks, but this process traditionally takes a lot of time and effort.
You might need to run network port-scanning tools to test routing and firewall configurations, then validate what processes are listening on your instance network ports before finally mapping the IPs identified in the port scan back to the host's owner.
To make this process simpler for our customers, AWS recently released the Network Reachability rules package in Amazon Inspector, our automated security assessment service that enables you to understand and improve the security and compliance of applications deployed on AWS.
Option C is incorrect since this cannot be used for port scans.
Options B and D are incorrect since these tools cannot be used for port scans.
For more information on port scanning using Inspector, please refer to the below URL.
https://aws.amazon.com/blogs/security/amazon-inspector-assess-network-exposure-ec2-instances-aws-network-reachability-assessments/The AWS service that has the "Network Reachability" rules package is AWS Inspector (option A).
AWS Inspector is a security assessment service that helps improve the security and compliance of applications deployed on AWS. It assesses applications for vulnerabilities and generates findings that can be used to remediate those vulnerabilities.
The "Network Reachability" rules package in AWS Inspector helps you understand the network connectivity of your instances and the associated security groups. This package allows you to run network port-scanning tools to test routing and firewall configurations, and validate which processes are listening on your instance network ports. The package then maps the IPs identified in the port scan back to the host's owner.
AWS Trusted Advisor (option B) is a service that provides best practices and recommendations to help optimize your AWS infrastructure. It does not have the "Network Reachability" rules package.
AWS VPC Flow Logs (option C) is a feature that captures information about the IP traffic going to and from network interfaces in a VPC. It does not have the "Network Reachability" rules package.
AWS CloudWatch Events (option D) is a service that monitors events in your AWS environment and triggers automated actions in response to those events. It does not have the "Network Reachability" rules package.
Therefore, the correct answer to the question is A. AWS Inspector.