Pricing
Start with a free scan that shows your exposure score and top findings. Unlock the full fix guide and ongoing monitoring when you're ready.
Free scan
Paste a URL and see your exposure score, severity counts, and finding titles. No signup, results in about 90 seconds. The step-by-step fixes are unlocked with any plan below.
Plans
| Plan | Price | Best for |
|---|---|---|
| Single Scan | $99 one-time | One full report + fix guide, before or after a launch. |
| Scan Pack | $299 (4 scans) | Re-scan after every fix to confirm it's closed. ~$75/scan. |
| Daily Monitoring | $699 / month | Automatic daily re-scan with alerts the moment something new appears. |
Every plan returns the same full report: all findings across all categories, the complete remediation guide, a branded PDF, and 30-day access via a secure link. No per-seat pricing, no contracts. Prices in USD.
What we check
- Asset & subdomain discovery (main site + app/API/admin)
- SSL / TLS & HTTPS hygiene
- Security headers & CORS
- Exposed secrets, files, and source maps
- Email security (SPF, DKIM, DMARC)
- Backend & API surface (Swagger/GraphQL/actuator/debug)
- Stack & dependency exposure
Common questions
Do I need to install anything?
No. The free scan and monitoring use only public signals tied to your domain, no agent, no credentials.
Does the free scan require signup?
No. You only pay when you want to unlock the full fixes and PDF.
Can I scan more than one domain?
Yes. A Scan Pack covers any mix of domains you own; Daily Monitoring can be added per domain.
Is this invasive scanning?
No. Every check is passive and external. We never log in, exploit, or attack your site.