Event-driven vulnerability management with Amazon Inspector

Amazon Inspector → Default Bus → Vulnerability Rule → Vulnerability Rule → Notify security team → Parse and store

Listens and routes Amazon Inspector events to EventBridge targets.

Rules are created to listen to Amazon Inspector events. When the vulnerability matches custom logic teams are notified using SNS and information is saved in DynamoDB using Lambda.

< Back to all patterns

Language:: Integration
Framework:: AWS SAM

Download this pattern (.zip)

View this pattern on GitHub

Clone repo

git clone https://github.com/aws-samples/serverless-patterns/cd serverless-patterns/inspector-eventbridge-multi-destinations

Deploy

sam deploy --guided

Testing

See the README in the GitHub repo for detailed testing instructions.

Cleanup

Delete the stack: sam delete.

Additional resources

Amazon Inspector now scans AWS Lambda functions for vulnerabilities

Perform continuous vulnerability scanning of AWS Lambda functions with Amazon Inspector

Created by:

Manjunath Arakere

Senior Solutions Architect @ AWS. Serverless enthusiast.