Simple, Transparent Pricing
Fixed-scope engagements with executive-ready reporting. No hourly surprises.
Authorized testing only • NDA available • Free re-test on qualifying plans
Starter
$3,500
Single web app or API. Fast, focused, and standards-aligned.
- One target (web app or API)
- OWASP Top 10 + misconfig review
- Light auth/session testing
- PDF report with prioritized fixes
- 1-hour findings walkthrough
Standard
$7,500
Most popular
Our most popular. Web + API depth with env hardening checks.
- Up to 2 targets (web + API)
- Auth, access control, and multi-role tests
- Basic cloud review (IAM & perimeter)
- Executive summary + CVSS scoring
- 2-hour remediation workshop
- Free re-test of critical/high within 30 days
Enterprise
$25,000+
Multi-surface testing with cloud/K8s and mobile options.
- 3–5 targets (web, API, mobile)
- Cloud/Kubernetes security review
- Secure code review (sample repos)
- Threat modeling session
- Red team simulation (opt-in)
- Full technical report + exec deck
- 30-day remediation support
Custom
Contact us
Tailored to unique environments and compliance drivers.
- Bespoke scope across apps/APIs/infra
- Workshops (onsite/remote)
- Custom reporting/mapping to stakeholders
- Shared Slack for faster iteration
What’s included in every plan
- • Written authorization & Rules of Engagement
- • Standards alignment (OWASP / NIST)
- • Clear remediation guidance with examples
- • Executive summary for leadership
- • Secure data handling & access controls
- • Optional NDA / DPA
At-a-glance comparison
| Capability | Starter | Standard | Enterprise |
|---|---|---|---|
| Targets | 1 | 2 | 3–5 |
| API depth | Core | Advanced | Advanced |
| Cloud/K8s review | — | Basic | In-depth |
| Re-test window | — | 30 days | 30 days |
Request a Proposal
We’ll respond within 1 business day.
Prefer to talk first?
Book a 20-minute discovery call with our team.
Add NEXT_PUBLIC_CALENDLY_URL to enable inline booking.