Analyze EC2 Instances against pre-defined security templates to check for vulnerabilities.

Answer - B.

The AWS Documentation mentions the following.

Amazon Inspector enables you to analyze the behavior of your AWS resources and helps you to identify potential security issues.

Using Amazon Inspector, you can define a collection of AWS resources that you want to include in an assessment target.

You can then create an assessment template and launch a security assessment run of this target.

For more information on AWS Inspector, please refer to the below URL:

The correct answer is B. AWS Inspector.

AWS Inspector is a security service that helps improve the security and compliance of applications running on Amazon EC2 instances by analyzing the behavior and configuration of those instances against predefined security rules. It does this by running various security assessments against EC2 instances, including vulnerability scanning, network security, and host security assessments.

Using AWS Inspector, you can define security rules packages called assessment templates that contain a set of rules to be evaluated against your EC2 instances. AWS Inspector provides a set of predefined assessment templates that can help you get started quickly. These templates are based on industry best practices and regulatory requirements, such as PCI DSS, HIPAA, and others.

When you run an assessment using AWS Inspector, it will generate a report that includes a list of findings, which are identified security issues on your EC2 instances. Each finding includes a description of the issue, its severity level, and recommendations for remediation.

In summary, AWS Inspector is a security service that allows you to assess the security of your EC2 instances against predefined security templates and helps you identify and remediate potential security issues.