Why Samma.io?
A complete security scanning platform that combines automated discovery, multi-scanner orchestration, and real-time event processing.
Auto-Detection
Automatically discovers scan targets in your Kubernetes cluster. The operator maintains an updated inventory so you never miss a new service.
Scheduled Scans
Cron-based scheduling with Nmap, Nikto, Tsunami, and DNSRecon. Scans trigger on new target discovery and follow your schedule.
SIEM Rule Engine
YAML-based rules with compliance mappings for PCI-DSS, GDPR, HIPAA, NIST, and MITRE ATT&CK frameworks.
NATS Integration
Real-time event processing via NATS message bus. Scanner results and security events flow through a unified pipeline.
Your Dashboards
Samma feeds data to Grafana, Kibana, or any tool you already use. We provide the pipeline — you choose the visualization.
Multi-Scanner
Nmap, Nikto, Tsunami, DNSRecon — all containerized and orchestrated. Add third-party scanners like PCI DSS or TLS testers.
How It Works
Three steps from deployment to actionable security insights.
Detect
Samma auto-discovers targets in your Kubernetes cluster and maintains an up-to-date inventory.
Scan
Dockerized scanners run on schedule, producing structured JSON output for every finding.
Analyze
The SIEM rule engine processes events through NATS and sends alerts to any destination.
Use your own dashboards
Samma doesn't try to replace your existing tools. All scan results and security events are published as structured data to Elasticsearch via NATS and Vector.dev.
Use Grafana, Kibana, or any visualization tool your team already knows. We provide pre-built dashboard templates to get you started, but the data is yours to query however you like.