I've got an application that isn't very robust and, as a result, is very sensitive to anti-virus scanning. I tried both the basic/free Windows Defender and a NextGenAV (i.e., SentinelOne). Both had negative performance impact on the app's servers during business hours. I tried putting scanning exceptions in based on the vendor's and AV support recommendations. Unfortunately, I still ran into performance issues and had to disable AV on the servers supporting the app.
Since I concluded the app can't function with AV running on its servers, I'm wondering if it's possible to at least do an AV scan of an AWS snapshot of the servers that are offline so it won't impact performance. I checked with SentinelOne support and they don't offer that feature. Any other ideas how to accomplish an offline scan of a snapshot?