Terrascan By Accurics

The industry leading Cloud Native Application Security scanner to detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

Cloud Native Security Scanner

As you embrace Cloud Native and Infrastructure as Code (IaC) solutions such as Kubernetes, Terraform, Public clouds, and containers; it is important to ensure that security best practices and compliance requirements are observed. Terrascan provides 500+ out-of-the-box policies so that you can scan IaC against common policy standards such as the CIS Benchmark. Terrascan leverages the Open Policy Agent (OPA) engine so that you can easily create custom policies using the Rego query language.

Terrascan Help


Build & Deploy

Circle CI

Integrate into Your
Development Pipeline

Enforcing policies throughout the development lifecycle is necessary to ensure that risks are not introduced along the way. Terracan can be integrated into your pipeline to scan IaC from code repositories such as GitHub, Bitbucket, and GitLab using an intuitive CLI interface. It can also act as a guardrail during the CI/CD phase to detect violations and block risky builds.

Review Violations

Terrascan enables you to review policy violations as soon as IaC is committed into your repository. This enables you to mitigate risks before your infrastructure is provisioned.
Terrascan results

Join the Conversation

Chat with the community, contributors and team behind Terrascan as  they discuss best practices for defining, managing, and securing cloud native infrastructure throughout the development lifecycle.

Community Office Hours

Check out previous episodes of Terrascan Talks to hear from the community, watch informative demos and discussions about all things DevSecOps.

We use cookies to ensure you get the best experience on our website. By continuing to browse this site, you acknowledge the use of cookies.