— Pricing

One pentest from €499. Continuous coverage from €899/month.

Start with one focused pentest before an audit, or commit to continuous coverage. No long contracts. No day-rate surprises.

One-time · pre-audit
Single Pentest
€499 one-time
One focused pentest. Pre-audit / pre-release.
  • Up to 3 projects · 3 GitHub repos (different origins OK)
  • 1 full-perimeter pentest run per project
  • Reproducible PoCs (curl + HTTP)
  • White-label PDF report
  • OWASP 2021 / PCI DSS 4.0 / CWE Top 25 mapping
  • Attack-chain analysis
  • Email support
Start scanning
Most popular
Pro
€899 / month
Continuous pentest behind the login wall.
  • 3 projects · 3 GitHub repos · 20 live subdomains / project
  • Monthly Pentest + weekly Discovery + weekly Revalidation
  • Authenticated scanning (credentials + default headers)
  • GitHub CI: auto-pentest on push
  • Release-triggered pentest (1st release/mo included, extras €499)
  • CLI + API + webhooks
  • All scan profiles (normal, stealth, aggressive, full, bounty)
  • Lab digest — weekly fresh vuln research feed
  • Manual scans + per-issue retest
  • White-label PDF reports
  • OWASP 2021 / PCI DSS 4.0 / CWE Top 25 mapping
  • Jira / Linear / GitHub Issues two-way sync
  • Priority email support
Start scanning
Team + Sentinel
Premium
€1899 / month
Continuous protection + compliance. Team-ready.
  • Includes 3 seats (additional seats €129/seat/month)
  • 10 projects · 10 GitHub repos · 50 live subdomains / project
  • Everything in Pro, plus:
  • AISEC Sentinel — continuous monitoring + Shield active defense
  • Per-framework compliance PDFs (OWASP / PCI / CWE Top 25)
  • Threat intel feed + continuous leak monitoring
  • Custom rhythm cadence (per-project tuning)
  • Host criticality rules (1–5 score · priority + SLA)
  • Scanner-tool toggle (disable engines per project)
  • Destructive methods opt-in (DELETE on lab/staging)
  • Bounty mode (RCE / SQLi / SSRF / IDOR focus)
  • Custom AI instructions for scanner playbook tuning
  • SAML SSO + RBAC + multi-seat audit log
  • Slack Connect + Jira integration
  • Project docs upload (PDF/TXT context)
Start scanning
On-prem
Enterprise
Custom
Regulated estates. On-prem or air-gapped.
  • Everything in Premium, plus:
  • ISO 27001:2022 / SOC 2 TSC / OWASP ASVS L1 — full-catalog mapping (93 / 64 / 136+ controls) with manual-audit flags on out-of-DAST-scope controls
  • PCI DSS quarterly — 90-day ASV-style aggregate PDF (non-ASV; auditor-defensible)
  • Unlimited projects · repos · seats
  • On-prem / air-gapped agent (one-way egress sync)
  • Encryption at rest + BYOK (Bring Your Own Key)
  • SCIM provisioning
  • Audit log export
  • Custom data retention policies
  • Named TAM + quarterly review
  • Custom playbooks & signatures
  • Custom SLAs · DPA · MSA
  • Procurement / vendor portal
  • 24/7 named support contact
Talk to us

Recurring plans billed monthly · Single Pentest is a one-time purchase · all prices in EUR, ex. VAT

Compare plans

Everything, side by side.

Single Pentest Pro Premium Enterprise
Price €499 one-time €899 / mo €1899 / mo Custom
Scope
Projects · repos 3 · 3 3 · 3 10 · 10 Unlimited
Pentest cadence 1 run / project Monthly + on push Monthly + on push Custom
Discovery + revalidation
Authenticated scans
Manual scans + retest
Reporting
PDF report
White-label / co-branded
OWASP 2021 / PCI DSS 4.0 / CWE Top 25 mapping
ISO 27001:2022 / SOC 2 TSC / OWASP ASVS L1 mapping
PCI DSS quarterly (90-day) ASV-style PDF
Integrations
CLI + GitHub Actions
Jira / Linear / GitHub Issues
SAML SSO + SCIM SSO SSO + SCIM
Team
Seats included 1 1 3 Unlimited
Additional seat / month €129 Custom
Defense
AISEC Sentinel (monitoring + Shield)
Threat intel + leak monitoring
On-prem / air-gapped agent
Support
Response SLA Email 8h priority 4h Slack Connect 1h + named TAM
FAQ

Things people ask before signing.

What's included in Single Pentest at €499?

One full-perimeter pentest run, across up to 3 projects and 3 GitHub repos (different origins are fine). PDF report with white-label option, OWASP 2021 / PCI DSS 4.0 / CWE Top 25 mapping, reproducible PoCs. Continuous revalidation and CI auto-pentest unlock on Pro.

What happens after I run my Single Pentest?

Your project stays in the dashboard with the findings, PDF report, and compliance mapping. Want another pentest run or continuous coverage? Upgrade to Pro or buy another Single Pentest.

Do you charge per seat?

Single Pentest and Pro are single-seat. Premium includes 3 seats; additional seats are €129 / seat / month. Enterprise seats are negotiated per deal.

Is Sentinel a separate product?

No — Sentinel (continuous monitoring + Shield active defense) is bundled with Premium and Enterprise. It runs alongside the pentest engine and doesn't need separate setup.

Can I run AISEC against a system I don't own?

No. We require domain-control verification before a single packet leaves the agent. Bug-bounty scopes need explicit program approval.

What's the onboarding like?

Add a project, verify the domain via DNS TXT, point the scanner at it. We hand-tune scope and auth flow with you in the first week, then the rhythm runs itself. Reports export any time.

Is the PDF a real audit artifact?

Yes — Single Pentest, Premium and Enterprise reports carry CVSS, CWE, CVE, OWASP / PCI / CWE Top 25 mappings, and a chain-of-custody hash. Auditors accept them; we'll get on a call if yours doesn't.

What about regulated environments?

Enterprise ships an on-prem / air-gapped agent that runs entirely inside your VPC, with results synced over a one-way egress channel. Encryption at rest + BYOK included.

Stop shipping to attackers first.

One target, daily continuous coverage. Verified PoCs in your tracker before tomorrow's standup.

Activate protection Talk to sales