- Terrascan
Published Date: 2024-04-14
Terrascan is an open-source tool that allows you to detect and fix security issues in infrastructure as code (IaC) and Kubernetes configurations. It is one of the most popular tools for IaC scanning, supporting a wide range of languages, including Terraform, CloudFormation, Kubernetes, and Helm charts. Terrascan provides a comprehensive set of rules that cover a wide range of security best practices, including access control, encryption, and resource management.
Using Terrascan is easy. You can install it via a package manager or container image, and then scan your IaC configuration by running a simple command. Terrascan will then generate a report that identifies any security issues that it finds. You can then fix these issues by making changes to your IaC configuration. Terrascan is a powerful tool that can help you to improve the security of your infrastructure. It is free to use, and it is easy to install and use.
Terrascan: Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure. As you embrace Infrastructure as Code (IaC) such as Terraform, Kubernetes, Argo CD, Atlantis and AWS CloudFormation, it is important to ensure that security best practices and compliance requirements are observed. Terracan provides 500+ out-of-the-box policies so that you can scan IaC against common policy standards such as the CIS Benchmark. It leverages the Open Policy Agent (OPA) engine so that you can easily create custom policies using the Rego query language. Monitor provisioned cloud infrastructure for configuration changes that introduce posture drift, and enables reverting to a secure posture. Detect security vulnerabilities and compliance violations.