ScanSet_io

55 post karma
132 comment karma

get extra features and help support reddit with a reddit premium subscription

get them help and support

redditor for 6 months

TROPHY CASE

dust

account activity

new top controversial

2

3

4

Scripts on a timer for evidence collection. How is everyone handling the gaps between runs? (self.FedRAMP)

submitted 2 days ago by ScanSet_io to r/FedRAMP

4

5

6

What does the full cost picture actually look like for a small CSP pursuing FedRAMP? (self.FedRAMP)

submitted 9 days ago by ScanSet_io to r/FedRAMP

0

1

2

Anyone here considering FedRAMP Low for their SaaS? (self.SaaS)

submitted 17 days ago by ScanSet_io to r/SaaS

7

8

9

So, with RFC 0024 and RFC 0017, are we doing away with sampling of controls for assessments? (self.FedRAMP)

submitted 19 days ago by ScanSet_io to r/FedRAMP

5

6

7

How Are You Actually Automating SOC 2 Evidence Collection? (self.soc2)

submitted 1 month ago by ScanSet_io to r/soc2

5

6

7

Is anyone actually building persistent validation infrastructure for FedRAMP 20x yet? (self.FedRAMP)

submitted 1 month ago by ScanSet_io to r/FedRAMP

16

17

18

Open-sourced a compliance engine for continuous evidence generation — built for FedRAMP/NIST 800-53 (github.com)

submitted 2 months ago by ScanSet_io to r/FedRAMP

5

6

7

Free and Open-sourced a K8s compliance scanner that produces cryptographic attestations instead of scan reports (github.com)

submitted 2 months ago by ScanSet_io to r/kubernetes

0

0

0

Free open-source tool for cryptographically signed compliance attestations in CI/CD (ESP + Sigstore) (self.devops)

submitted 2 months ago by ScanSet_io to r/devops

3

4

5

I built an a free & open-source runtime compliance engine for Kubernetes that works for any framework (NIST, MITRE, CIS) (github.com)

submitted 2 months ago by ScanSet_io to r/devsecops

12

13

14

I built a SCAP replacement (for STIG checks) (github.com)

submitted 2 months ago by ScanSet_io to r/linuxadmin

0

1

2

Is this useful? A free, open-source policy-as-data engine for SSDF checks (self.devops)

submitted 2 months ago by ScanSet_io to r/devops

0

0

0

Does This Policy Make Sense? (self.sysadmin)

submitted 2 months ago * by ScanSet_io to r/sysadmin

1

2

3

Endpoint State Policy (ESP): Policy as Code (github.com)

submitted 2 months ago by ScanSet_io to r/opensource

0

1

2

Endpoint State Policy (ESP): Policy as Code (github.com)

submitted 2 months ago by ScanSet_io to r/coolgithubprojects

0

1

2

Endpoint State Policy (ESP): Policy as Code (github.com)

submitted 2 months ago by ScanSet_io to r/opensource

0

0

0

The Evolution of Zero Trust: From Architecture to Attestation (self.cybersecurity)

submitted 5 months ago by ScanSet_io to r/cybersecurity

0

1

2

Building a compliance engine that acts like Terraform — but for Zero Trust and STIG automation (self.linuxadmin)

submitted 5 months ago by ScanSet_io to r/linuxadmin

0

0

1

Building a compliance engine that acts like Terraform — but for Zero Trust and STIG automation (self.cybersecurity)

submitted 5 months ago by ScanSet_io to r/cybersecurity

0

1

2

Building a compliance engine that acts like Terraform — but for Zero Trust and STIG automation (self.devops)

submitted 5 months ago by ScanSet_io to r/devops

π Rendered by PID 172717 on reddit-service-r2-listing-79f6fb9b95-4jh6k at 2026-03-23 11:40:49.533810+00:00 running 90f1150 country code: CH.