Terrascan

Terrascan is a static code analyzer for Infrastructure as Code (IaC). It can be installed and run in a number of different ways, and is most commonly used in automated pipelines to identify policy violations before insecure infrastructure is provisioned. For more information, see the Terrascan documentation.

The Terrascan page allows you to install or uninstall the Terrascan executable in your Nessus instance. By default, Terrascan is not installed.

The page also shows the following details for the Terrascan executable:

  • Status (Installed, Not Installed, Downloading, or Removing)

  • Version (for example, 1.13.2 or N/A if Terrascan is not installed)

  • Path (for example, /opt/nessus/sbin/terrascan or N/A if Terrascan is not installed)

Note: The Terrascan feature is available in Nessus Professional and Nessus Essentials for Nessus versions 10.1.2 and newer.

Note: When installed, Terrascan pulls policies from its GitHub repository, retrieves a scan target repository, and scans the scan target repository locally on the Nessus host. Running Terrascan causes the Nessus host to consume more CPU and network resources than normal Nessus scanning. For more information, see the Terrascan documentation.