Terrascan

Terrascan is a static code analyzer for Infrastructure as Code (IaC). You can install and run Terrascan in several different ways. Companies most commonly use Terrascan in automated pipelines to identify policy violations before they provision insecure infrastructure. For more information, see the Terrascan documentation.

Note: Terrascan is not available for Raspberry Pi 4 versions of Nessus.

The Terrascan > About page allows you to install or uninstall the Terrascan executable in your Nessus instance. By default, Nessus does not have Terrascan installed.

The page also shows the following details for the Terrascan executable:

  • Status (Installed, Not Installed, Downloading, or Removing)

  • Version (for example, 1.13.2 or N/A if you have not installed Terrascan)

  • Path (for example, /opt/nessus/sbin/terrascan or N/A if you have not installed Terrascan)

Note: The Terrascan feature is available in Nessus Professional and Nessus Essentials for Nessus versions 10.1.2 and newer.

Note: When installed, Terrascan pulls policies from its GitHub repository, retrieves a scan target repository, and scans the scan target repository locally on the Nessus host. Running Terrascan causes the Nessus host to consume more CPU and network resources than normal Nessus scanning. For more information, see the Terrascan documentation.