→ Free · No signup · Email-gated

See what an attacker sees, in three minutes.

Enter any public domain. We run a curated subset of our paid scan engine — ~600 nuclei checks, header hygiene, and TLS posture — then email you a PDF with prioritized findings and fix instructions.

Scan a website

We email the PDF as soon as the scan finishes (~2–3 min). No account needed.

By submitting you're authorizing us to send unauthenticated network requests to the domain. Don't enter a domain you don't own or have permission to scan. We rate-limit per email + IP + domain. See our terms.

Scan running
Queued — the scan starts within 30 seconds.

What you get vs. what you get if you upgrade

Honest comparison — the free scan is a real preview of the engine, but the paid tiers do considerably more work.

Free scan (this page)

  • Single domain, unauthenticated
  • ~600 curated nuclei checks (cve, exposure, misconfig, default-login, sqli, xss, ssrf, lfi, rce, disclosure)
  • Security-headers audit (HSTS, CSP, X-Frame-Options, etc.)
  • TLS quick check (cipher posture, cert validity, protocol versions)
  • AI-triaged: false positives suppressed, severity tuned to context
  • Watermarked PDF via email · 3-min budget · 3 scans/day per email

Paid Automated assessment — $1,999/yr

  • Full nuclei template set (~9,000 checks, all severities)
  • Subdomain discovery (subfinder) + every live host scanned
  • Full testssl.sh TLS audit (not the quick version)
  • Cross-scan delta tracking — "new since last scan" / "resolved"
  • Signed PDF + public verification URL auditors can independently check
  • 30-min budget · monthly cadence · stored in your dashboard

Common questions

Is this safe to run against my production site?
Yes. The free scan uses unauthenticated, non-intrusive probes only — no DOS, no brute force, no exploit payloads that change state. It looks the same to your WAF as a normal vulnerability scanner. Rate-limited to 40 requests/second.
Why do you need my email?
Two reasons: (1) it's how we send you the report — the scan takes a couple minutes and we don't want to make you wait on the page; (2) it lets us rate-limit per address. We don't add you to any marketing list unless you opt in.
My site is behind auth. Will it find anything?
The free scan only tests the public surface. If most of your application is behind login, you'll see mostly header / TLS / public-asset findings here. For a real assessment of the authenticated surface you need our Pen Test ($4,999) where we test from inside the auth boundary with a test account.
Can I scan a competitor's site?
Please don't. Our terms say you must own or have written permission to scan the domain. Unauthorized scanning may violate the CFAA (US) and similar laws elsewhere. We rate-limit per domain partly to deter this.
What if the scan finds nothing?
Good news, but not the whole story. The free scan covers ~7% of the templates our paid tier runs. "Nothing in the free preview" ≠ "nothing real." The paid Automated assessment goes much deeper, and a human Pen Test goes deeper still.