In the recipe, we scheduled Inspector to run checks weekly. We can manually run checks as follows:

1. Go to the Assessment templates page.
2. Select our assessment template.
3. Click Run.

The steps to configure notifications for Inspector using CloudWatch and SNS can be summarized as follows:

1. Go to the CloudWatch service in the console.
2. Click on Rules under Events to go to the Rules page.

3. Click on Create rule to go to the Create rule page.
4. Under the Event Source section, do the following:
   1. Select Event Pattern.
   2. For Service Name, select Inspector.
   3. For Event Type, select All Events.
5. Under Targets, do the following:
   1. Click on Add target.
   2. Select SNS topic from the dropdown.
   3. Select an SNS topic. You can create an SNS topic by following the Creating an SNS topic to send email recipe in Chapter 8, Monitoring with CloudWatch, CloudTrail, and Config.
6. Scroll down and click on Configure details.
7. In the Configure rule details page, provide a Name and Description for our rule. Click Create rule.

For more details on using CloudWatch Events, refer to the Working with CloudWatch events recipe in Chapter 8, Monitoring with CloudWatch, CloudTrail, and Config.

AWS Inspector is priced as follows: Network assessments are charged based on the monthly volume of instance assessments. Host assessments are charged based on the monthly volume of agent assessments. The more we use it, the more the cost per instance assessment is reduced. Currently, AWS also provides a free trial for 90 days, where the first 250 instance assessments are not charged.