AWS Certified Cloud Practitioner (CLF-C02) — Question 682

Which AWS offering can analyze a company’s AWS environment to discover security vulnerabilities on Amazon EC2 instances?

Answer options

• A. Amazon Inspector
• B. Amazon Macie
• C. AWS Shield Standard
• D. Security groups

Correct answer: A

Explanation

Amazon Inspector is an automated security assessment service that scans Amazon EC2 instances for software vulnerabilities and unintended network exposure. Amazon Macie is designed to discover and protect sensitive data, AWS Shield Standard provides DDoS protection, and security groups act as virtual firewalls rather than vulnerability scanners.