What service automates the detection of vulnerabilities and unintended network exposure in your AWS resources?

Amazon Inspector is the correct choice as it is specifically designed to automate the assessment of security and compliance of applications deployed on AWS. It performs vulnerability assessments by identifying security weaknesses and unintended network exposure in your AWS resources. This service helps ensure that your environment complies with best practices and security standards.

By regularly running assessments, Amazon Inspector can detect common vulnerabilities, such as those listed in the Common Vulnerabilities and Exposures (CVE) database. It provides actionable findings that allow you to prioritize and remediate these vulnerabilities, thus enhancing the security posture of your applications.

In contrast, AWS Shield is primarily focused on protecting applications from DDoS attacks, while AWS WAF is a web application firewall that helps protect applications by filtering and monitoring HTTP traffic. Amazon Macie, on the other hand, focuses on data privacy and security, specifically helping to discover, classify, and protect sensitive data stored in AWS. Each of these services has a distinct function that does not encompass the comprehensive vulnerability detection capabilities provided by Amazon Inspector.