Deep dive into Amazon Inspector for AWS Lambda

1

Snyk

In this article we looked at the functionality on the Amazon Inspector for AWS Lambda functions, how the scanning functions can be activated. After that we looked into scan results and what information it provides to us to remediate the detected vulnerabilities. Of course there are other tools available in this area like OWASP Dependency-Check or Snyk which are mostly designed to be integrated in CI/CD process. Ideally you need both : scan during the CI/CD and then scan the deployed solution. I won't provide any comparison of those, but would like to mention that I personally found it very comfortable in AWS Inspector to have all scanning results (EC2, ECR and Lambda) in one place and also the fact that AWS Inspector takes the context network accessibility into the account like.

#Security #Security Monitoring #Security CI 85 social mentions

In this article we looked at the functionality on the Amazon Inspector for AWS Lambda functions, how the scanning functions can be activated. After that we looked into scan results and what information it provides to us to remediate the detected vulnerabilities. Of course there are other tools available in this area like OWASP Dependency-Check or Snyk which are mostly designed to be integrated in CI/CD process. Ideally you need both : scan during the CI/CD and then scan the deployed solution. I won't provide any comparison of those, but would like to mention that I personally found it very comfortable in AWS Inspector to have all scanning results (EC2, ECR and Lambda) in one place and also the fact that AWS Inspector takes the context network accessibility into the account like.

#Security #Code Analysis #Web Application Security 16 social mentions