// PRICING

Continuous AI penetration testing on monthly subscription. Pentest + Full recon + Revalidation, automated.

STARTER
€129
per month

Solo operators & side projects

  • 1 project
  • 5 live monitored subdomains
  • Weekly Full recon
  • Automatic Revalidation of open issues
  • Email support
  • Monthly deep Pentest (upgrade)
  • CLI + PDF reports
  • Team collaboration
Start with Starter
MOST POPULAR
PRO
€399
per month

Early-stage teams

  • Everything in Starter +
  • 2 projects
  • 20 live monitored subdomains per project
  • Monthly deep Pentest
  • Advanced scanning
  • CLI + PDF reports
  • Compliance mapping (Premium)
  • SSO + Slack + Jira (Premium)
Start with Pro
PREMIUM
€899
per month

Mid-market — compliance + collaboration

  • Everything in Pro +
  • 4 projects · 5 seats
  • 50 live monitored subdomains per project
  • Shield bundled (live attack monitoring)
  • Compliance — OWASP 2021, PCI DSS 4.0, CWE Top 25
  • SSO (WorkOS) + Slack + Jira
  • Priority support
Start with Premium
ENTERPRISE
Contact us
regulated / on-prem

Unlimited scale, on-prem, dedicated team

  • Everything in Premium +
  • Unlimited projects + seats
  • On-prem deployment option
  • Data-at-rest encryption (per-project keys)
  • SCIM provisioning
  • Audit log export (SIEM)
  • Dedicated AM + SLA
  • Custom integrations
Contact Sales

// HOW THE RHYTHM WORKS

Every project runs on a continuous rhythm of three automated scans. No buttons to push, no schedule to manage — AISEC keeps your perimeter under watch and reports deltas as they appear.

Monthly deep Pentest (Pro+) — full attack-chain reasoning
Weekly Full recon — surface map + new subdomain discovery
Weekly Revalidation — auto-retest of every open finding
Manual Pentest on demand any time

// FREQUENTLY ASKED

Why a subscription instead of credits?
Real attackers don't take a month off. Pay-per-scan creates a perverse incentive to scan less. Subscription lets us run a continuous rhythm — one deep Pentest per month, weekly Full recon, weekly Revalidation of every open finding — so coverage is always current. Predictable cost for you, predictable margin for us.
What counts as a project?
A project is a root domain (e.g. acme.com). All subdomains of that root that you put in scope (api.acme.com, app.acme.com, etc.) are included — they don't count as separate projects. Each tier sets a limit on live monitored subdomains per project.
Can I trigger a scan manually?
Yes. The rhythm runs automatically, but you can fire a manual Pentest, Full recon, or Revalidation any time — before a release, after a security incident, or just because. No extra charge on Pro / Premium / Enterprise; Starter has rate limits to keep cost predictable.
What's Shield, and why is it bundled with Premium?
Shield is the defensive side of AISEC — live monitoring of inbound traffic for attack patterns matching the techniques our scanner uses. Bundled with Premium because customers paying for compliance + integrations are exactly the ones who care about active defense. Sold standalone via Enterprise for SOC teams that want it without the scanner.
Can I downgrade?
Upgrades are self-serve. Downgrades require support — email [email protected] and we'll handle the project + seat cleanup manually. Avoids the awkward "you have 5 projects but Pro allows 2 — which 3 archive?" problem.
Is there a free trial?
No free tier. We're a security tool, not adware — pay-to-play keeps the user base serious and lets us invest in scanner quality instead of trial abuse defense. Start on Starter (€129/mo, cancel any time) if you want to evaluate.
On-prem / air-gapped deployment?
Enterprise tier only. We support both customer-AWS deployment via AWS Marketplace + CloudFormation, and fully air-gapped on-prem with a local LLM (Llama / Qwen) instead of Anthropic API. Talk to sales for the deployment matrix.