Free

✓ Free monthly discovery and vulnerability scans on sign-up email domain ✓ Monthly security report ✓ Invite up to 3 team members

Growth

✓ Daily vulnerability scans ✓ Integrate cloud accounts (AWS, GCP, Azure) ✓ Advanced asset discovery ✓ Real time emerging threats autoscan ✓ Reporting (PDF, JSON, CSV) ✓ Invite up to 10 team members

Enterprise

✓ Retest and regression automations ✓ Custom scan limits and frequency controls ✓ Internal network agent ✓ 2-way ticketing ✓ Vulnerability regression ✓ PCI, SOC 2, ISO27001, HIPAA compliance ✓ SSO, Role-based access control, audit logs

Note for Individual Researchers & Pentesters: Our Growth tier is specifically designed for organizations and teams. If you’re an individual researcher or pentester, we recommend sticking with our Free tier while we actively develop more individual-focused features. We believe in being transparent - if a feature you need isn’t available in the Free tier yet, our open-source tools might be a better fit for now. We’re working hard to expand our Free tier capabilities!

What counts as an asset?

Assets are Fully Qualified Domain Names (FQDNs) or IP addresses without ports. For example, api.acme.com or 192.89.29.19 count as single assets, regardless of how many ports are open on them. We provide free asset discovery and cloud integrations to help you calculate your total assets before selecting a plan, with Growth tier supporting up to 100 assets and larger environments requiring Enterprise.

Exposure Management

FeatureFreeGrowthEnterprise
Instant results with pre-indexed discovery
Monthly new domain discovery limit10100Custom
Discovery frequencyMonthlyDailyHourly
Subdomain enumeration
Port EnumerationTop 10 portsTop 1k portsFull or custom ranges
Screenshots
Technology detection
Email, messaging alerts
Integrate cloud services-
Export discovered assetsRawJSON, CSV, RawJSON, CSV, Raw
Custom labels with AI-
Subsidiary discovery and mapping--

Vulnerability Management

FeatureFreeGrowthEnterprise
Ultra fast cloud scans (35x faster than Nuclei)Monthly scan for verified business emailsUp to 100 unique assets each monthCustom limits
Connect Nuclei to cloud
Email, messaging alerts
Scan logs-Read-onlyRead and export CSV
PDF Reporting-Basic PDF, JSON, CSVExecutive and compliance reports (SOC 2, PCI, HIPAA)
Custom rate limits--
Export findings to ticketing platforms-
Real-time Autoscan for trending exploits-
Automated regressions for fixed vulnerabilities--
DAST, fuzzing, and headless templates--Coming soon

Nuclei Templates

FeatureFreeGrowthEnterprise
Real-time templates feed
Powerful AI template editor10 queries / day100 queries / dayUnlimited
Connect GitHub VCS
Early access to new templates
Live support for writing custom Nuclei templates--

Admin and Team

FeatureFreeGrowthEnterprise
Seats310Unlimited
Team workspaces1UnlimitedUnlimited
Role-based access control (admin, member, viewer)--
Audit logs--
Fixed and dedicated scan IPs for whitelisting--
SAML, SSO (Okta, Entra, Google)--
SupportCommunity supportCommunity supportEnterprise support

Getting Started

  1. Free Plan: Start Now - No credit card required
  2. Growth Plan: Upgrade to Growth - Instant access to hosted vulnerability scanning capabilities.
  3. Enterprise: Contact Sales - Custom solution design

Frequently Asked Questions

Q: How is our billing structured and managed?

  • Free Tier: Sign up and use basic features forever - no credit card needed.
  • Growth Plan: $3,500/year. Automated billing with usage reports.
  • Enterprise: Customized billing arrangements including volume-based pricing, multi-year agreements, and flexible payment schedules aligned with your fiscal planning.

Q: What payment methods and billing processes do you support?

  • Growth Plan: All major credit cards, automated recurring billing with detailed invoices and usage metrics.
  • Enterprise: Comprehensive payment options including wire transfer, purchase orders, ACH/direct debit, and custom contract arrangements.

Q: How do you calculate and track asset usage?

  • Each unique hostname/IP:port combination counts as one distinct asset
  • Additional scans of the same asset do not count against your quota within the same billing cycle.
  • The billing cycle is monthly, and your asset consumption resets to zero at the beginning of each billing cycle.
  • Once your asset consumption reaches your plan limit, you cannot add new assets for scanning if the number of remaining available assets is lower than the number of new assets you wish to scan.
  • If new assets discovered during scans exceed your current asset limit, those additional assets will be skipped. Scans themselves will not fail or stop unexpectedly; they will simply continue scanning assets within your allowable quota.
  • You can monitor your real-time asset consumption through the Usage dashboard under settings.

Recommendation: For larger teams or organizations managing a higher number of assets, it is generally recommended to choose the Enterprise plan. This plan provides greater flexibility, and assets exceeding your quota are not skipped, ensuring uninterrupted coverage. The Enterprise plan simplifies management and ensures continuous scanning without the need for manual adjustments or concerns about assets being skipped. The Growth plan is typically best suited for smaller teams or those monitoring and protecting fewer assets.

Q: What security certifications and compliance standards do you maintain?

Visit our Trust Center for detailed information about our security practices and certifications:

  • SOC 2 Type II certified with annual audits
  • Regular penetration testing
  • Enterprise customers receive access to our security documentation portal including:
    • Audit reports
    • Security questionnaire responses
    • Compliance certifications
    • Security documentations

Need more detailed information about our enterprise capabilities? Contact our sales team for an in-depth technical discussion and custom solution design.