Inspector Flashcards

1
Q

Inspector

What is Inspector?

important

A

Check EC2 instances and containers for vulnerabilities and bad practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Inspector

What’s the mental picture for understanding Inspector?

A

Military barrack inspection by sergeant: no brains/ML, just check against checklists

run once, get a report

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Inspector

How do you use it?

A

Run it for a while, collect the report.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Inspector

How do you install the agent?

important

A

Actually not required, but more enriched data if you do.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Inspector

What does Inspector do if an agent isn’t on the box?

important

A

Just a network assessment (from the outside)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Inspector

What extra data can the agent provide to Inspector?

important

A

Things withing the operating system itself

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Inspector

What are examples of what’s in the report?

A

CVEs found, reachability, Center for Internet Security (CIS) benchmarks

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Inspector

What is “reachability”?

A

Looks at ALB, DX, ENIs, IGW, ACLs, SGs, Peering and more: how can this be reached?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Inspector

What is in the reachability report?

A

Open ports: well-known ports, unusual ports, if anything is listening on them from OS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Inspector

What are examples of Packages that Inspector agent can run?

important

A

CVE (vulnerabilities), CIS (best practices), general security best practices

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Inspector

Example of 2 general security best practices?

A

Disbale root login over ssh, certain folder and file permissions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Inspector

Something on the exam is talking about CVEs or CIS benchmarks?

important

A

Inspector

How well did you know this?
1
Not at all
2
3
4
5
Perfectly