// Pricing

Pay for surface, not seats.

Two products, two honest pricing models, and no per-seat tax. Web apps are priced by size; networks by asset. Pick the cadence that fits — a one-off, a yearly compliance test, or always-on.

Estimate on the calculator Talk to sales
// Estimate

Price it yourself, in seconds

Drag the sliders for a live estimate — by application size for web, per asset for network — across one-off, annual, and continuous cadence. No sales call required.

Standard SaaS app
~120 routes3 auth flows
Est. engagement
$17,600
/ yr
  • Verified, exploit-backed findings
  • Near-zero false-positive SLA
  • SAST + DAST fusion
  • SOC 2 / ISO-ready reports
Get early access

Indicative only — we'll confirm final scope with you directly.

// Models

Two ways to price, both transparent

P-01

Web App — by size

Priced on the application's surface: number of routes and the complexity of its auth flows. We measure it during onboarding with a crawl — you don't self-report.

Brochure
~25 routes · single auth flow
Standard SaaS
~120 routes · few auth flows
Complex platform
~400 routes · rich roles
Enterprise suite
1,000+ routes · custom
P-02

Network — per asset

Priced per subdomain or IP in scope, with unit costs that step down as your inventory grows. Assets discovered mid-contract are billed at your tier rate.

Up to 100 assets
~$90 per asset
100–250 assets
~$70 per asset
250+ assets
~$55 per asset
Enterprise
Custom volume tiers
// Cadence

One-off, annual, or continuous

One-off

A single point-in-time engagement when you need a fast, authoritative answer.

  • Full verified-findings report
  • Reproduction & remediation steps
  • One free re-test of fixes
Most popular

Annual (compliance)

Two scheduled tests a year plus an attestation letter — built for audit cycles.

  • Everything in One-off
  • Auditor-ready attestation letter
  • Framework-mapped reporting

Continuous

Always-on coverage that re-tests on every deploy and catches drift as it happens.

  • Everything in Annual
  • Re-tests on every deploy
  • Always audit-ready

Cadence sets a multiplier on the base per-size / per-asset price. Re-tests are always free.

// Everything includes

In every engagement, every tier

  • Verified, exploit-backed findings only
  • Near-zero false-positive SLA
  • Reproduction steps & remediation guidance
  • Findings routed to Jira / GitHub / Slack
  • Free re-tests of every fix
  • SOC 2 / ISO 27001-ready report formats
  • Full action log for audit & replay
  • No per-seat or per-user fees
// Enterprise

Testing at portfolio scale

Dozens of apps, thousands of assets, multiple business units, or a self-hosted deployment? We'll build a custom programme with volume pricing, an MSA, and security review support.

Explore Enterprise →Get early access →

Get an estimate in thirty seconds.

Use the live calculator above, or have us scope it with you.

Open the calculator Talk to sales