Pricing
Start with a free scan that shows your exposure score and top findings. Unlock the full fix guide and ongoing monitoring when you're ready.
Free scan
Paste a URL and see your exposure score, severity counts, and finding titles — no signup, results in about 90 seconds. The step-by-step fixes are unlocked with any plan below.
Plans
| Plan | Price | Best for |
|---|---|---|
| Single Scan | $99 one-time | One full report + fix guide, before or after a launch. |
| Scan Pack | $299 (4 scans) | Re-scan after every fix to confirm it's closed. ~$75/scan. |
| Daily Monitoring | $699 / month | Automatic daily re-scan with alerts the moment something new appears. |
Every plan returns the same full report: all findings across all categories, the complete remediation guide, a branded PDF, and 30-day access via a secure link. No per-seat pricing, no contracts. Prices in USD.
What we check
- Asset & subdomain discovery (main site + app/API/admin)
- SSL / TLS & HTTPS hygiene
- Security headers & CORS
- Exposed secrets, files, and source maps
- Email security (SPF, DKIM, DMARC)
- Backend & API surface (Swagger/GraphQL/actuator/debug)
- Stack & dependency exposure
Common questions
Do I need to install anything?
No. The free scan and monitoring use only public signals tied to your domain — no agent, no credentials.
Does the free scan require signup?
No. You only pay when you want to unlock the full fixes and PDF.
Can I scan more than one domain?
Yes. A Scan Pack covers any mix of domains you own; Daily Monitoring can be added per domain.
Is this invasive scanning?
No. Every check is passive and external — we never log in, exploit, or attack your site.