I guess another way to present the differences between Inspector vs. Trusted Advisor, is to point out that Trusted Advisor has no access within your EC2 instances.
Hence Trusted Advisor can only make security recommendations about things that it can observe from the account level, VPC level, and down to the hypervisor level – but not ‘lower’ than that.
Inspector on the other hand has the agent installed in your EC2’s, and so it make recommendations about things running inside the EC2 instance itself (but not account, VPC, etc.).
Yessir, you are spot on.
Agree. Also, Trusted advisor does not use any agent, while Inspector use Agent. Agree?