— Pricing

Pay for coverage, not consultants.

Per-target pricing. No seat fees, no day-rate surprises. Start with one app, scale to the whole estate.

Starter
€129 / target / month
For one app. Daily recon + weekly active scan.
  • 1 target (web app or API)
  • Weekly active pentest
  • Daily perimeter recon
  • Reproducible PoCs (curl + HTTP)
  • PDF report (AISEC-branded)
  • Email + Slack alerts
Book a demo
Pro
€399 / target / month
For growing teams. Daily active + revalidation.
  • Up to 5 targets
  • Daily active pentest
  • Continuous recon + drift alerts
  • Auto-revalidation on every deploy
  • Jira / Linear / GitHub Issues
  • CLI + GitHub Actions
  • Priority email support
Book a demo
Most popular
Premium
€899 / target / month
Shield + compliance + SSO bundled.
  • Up to 25 targets
  • Everything in Pro
  • AISEC Shield — real-time API monitoring
  • SOC 2 / ISO 27001 / PCI mapping
  • White-label PDF reports
  • SAML SSO + SCIM
  • Audit-grade evidence export
  • Slack Connect support
Book a demo
Enterprise
Custom
For regulated estates and 25+ targets.
  • Unlimited targets
  • Dedicated tenant + private agents
  • Custom playbooks & signatures
  • On-prem agent (air-gapped)
  • Named TAM + quarterly review
  • Custom SLAs & DPA
  • Procurement / vendor portal
Contact sales

All plans include unauthenticated & authenticated runs · monthly billing · prices in EUR, ex. VAT

Compare plans

Everything, side by side.

Starter Pro Premium Enterprise
Scanning
Targets 1 5 25 Unlimited
Active pentest cadence Weekly Daily Daily Custom
Perimeter recon Daily Continuous Continuous Continuous
Auto-revalidation on deploy
Authenticated runs
Reporting
PDF report
White-label / co-branded
CVSS · CWE · CVE mapping
SOC 2 / ISO 27001 / PCI mapping
Integrations
Slack / Email alerts
Jira / Linear / GitHub
CLI + GitHub Actions
SAML SSO + SCIM
Defense
AISEC Shield (real-time monitoring)
On-prem / air-gapped agent
Support
Response SLA 48h email 8h priority 4h Slack Connect 1h + named TAM
Quarterly review
FAQ

Things people ask before signing.

What counts as a "target"?

One application or API, identified by its primary domain. Subdomains and dependencies discovered during recon are scanned at no extra cost.

Can I run AISEC against a system I don't own?

No. We require domain-control verification before a single packet leaves the agent. Bug-bounty scopes need explicit program approval.

Do you charge per finding or per scan?

Neither. Flat per-target, scan as often as you like. Daily revalidation is included on Pro and above.

What's the onboarding like?

You add a target, we hand-tune the agent's scope and auth flow with you in the first week, then the daily cadence runs itself. Your reports are yours, exported any time.

Is the PDF a real audit artifact?

Yes: Premium and Enterprise reports carry CVSS, CWE, CVE, control mappings, and a chain-of-custody hash. Auditors accept them; we'll get on a call if yours doesn't.

What about regulated environments?

Enterprise ships an on-prem agent that runs entirely inside your VPC, with results synced over a one-way egress channel. Air-gapped mode available.

Stop shipping to attackers first.

One target, daily continuous coverage. Verified PoCs in your tracker before tomorrow's standup.

Activate protection Talk to sales