Simple, credit-based pricing

One platform.
Pay only for what scans.

Every plan unlocks the full intelligence platform. Credits cover the work that costs us money — EdgeProtect scans, triage runs, brand monitoring, API requests.

Free Tier Full intelligence platform, dashboards, and alerts — £0 forever, no card required.

Start free

Paid plans below add EdgeProtect scans, vulnerability triage, brand protection, and API access.

Basic

For solo operators and lean teams running periodic scans.

£299/mo

800credits / mo

£0.374 per credit

~1 typical EdgeProtect scan with credentials reveal
API access — 60 requests/min
All threat intelligence, CVE, and dashboard features
Email alerts and weekly intelligence reports
Single organisation, unlimited team members

Start with Basic

Business

For security teams running regular scans across multiple targets.

£899/mo

2,500credits / mo

£0.360 per credit

~2–3 typical EdgeProtect scans per month
API access — 60 requests/min
Continuous brand-protection monitoring
Vulnerability triage on demand
Priority email support

Choose Business

Enterprise

For mature security programmes and MSSPs operating at scale.

£2,499/mo

10,000credits / mo

£0.250 per credit

Cheapest per-credit rate across the platform
API access — 60 requests/min
Multi-domain brand protection
CREST-accredited expert escalation
Dedicated account manager and SLA

Choose Enterprise

Credits reset to your plan quota each billing period — they don't roll over. Need more? Talk to sales for custom volumes.

Usage

Pay only for what you use

No seat licences. No surprise bills. Credits buy the active work that hits external targets — every other feature is unlocked from day one.

Vulnerability Triage

AI-driven enrichment, scoring, and remediation steps for a single CVE in your stack.

200credits per triage

EdgeProtect Scan

External attack surface scan against a target domain.

Base run200 credits
Per host discovered10 credits
Per port discovered1 credit
Reveal exposed creds500 credits

Example: 14 hosts, 104 ports, with creds = 200 + 140 + 104 + 500 = 944 credits

Brand Protection

Continuous monitoring for typosquats, lookalikes, and impersonation domains.

25credits / domain / day

Example: 1 domain × 30 days = 750 credits/mo

API Access

Programmatic access via per-organisation API keys. Paid plans only.

Standard read (CVE, EPSS, KEV, search)1 credit
Enriched (threat intel, IOC, actor)2 credits
AI / triage call25 credits
Bulk export (per 1k rows)10 credits

Rate limits: 60 req/min on every plan.

What a typical month looks like

A few realistic profiles to help you size the right plan.

Solo / Lean ops

Best fit: Basic — 800 credits

A founder, IT lead, or small ops team running periodic checks against their external footprint.

1 EdgeProtect scan (no creds reveal)~444
1 vulnerability triage200
~150 standard API reads150

Monthly total~794

Active security team

Best fit: Business — 2,500 credits

A security function owning multiple assets, running scans regularly and monitoring at least one core brand.

1 brand-protection domain (30 days)750
1 EdgeProtect scan with creds reveal~944

Monthly total~1,694

Enterprise / MSSP

Best fit: Enterprise — 10,000 credits

Mature programmes and managed providers running multiple targets and feeding the API into their own tooling.

3 brand-protection domains (30 days)2,250
4 EdgeProtect scans with creds reveal~3,776
5 vulnerability triages1,000
~500 API reads & exports~600

Monthly total~7,626

Platform

Included with every plan

The full intelligence platform — no feature gates, no per-seat upcharges. Credits only apply to the four actions above.

Threat Intelligence

Threat groups database (APTs, criminal, nation-state)
Threat actor profiles with TTPs, targets, attribution
Threat groups by industry and sector
IOC database — IPs, domains, URLs, hashes
Malware samples and detection metadata
JA3 and SSL blacklists
Weekly threat & vulnerability roundup

CVE & Vulnerability Data

Full CVE database — search, filter, browse
Individual CVE detail pages
CISA Known Exploited Vulnerabilities (KEV)
EPSS scoring, history, percentile, trending
CWE browser
CPE search — products, vendors, versions
Recent CVEs (last 30 days)

Technology Tracking

Auto-detect tech stack via website scan
Manual technology selection
Tracked technologies dashboard
Vendor pages with vulnerability rollups
Product pages with version-level CVE data
Vulnerabilities by vendor / product / version
Technology adoption statistics

Industries & Sectors

Browse threats and CVEs by industry
Sub-industry filtering
Industry-specific threat actor mapping

Alerting & Notifications

Custom alerts on CVEs, tech, threat intel
Alert lists with edit/delete
Frequency, severity, and delivery preferences
Real-time notification panel
Email alert delivery

Frameworks & Detection

Full MITRE ATT&CK browser
Interactive attack navigator
Sigma rules database with community voting
Atomic Red Team library with technique mapping

Dashboards & Analytics

Personalised security dashboard
Overview / Intelligence / Analytics / Tech / Industries tabs
Vulnerability timeline
CVSS radar charts
EPSS distribution and history
Statistics page with full metrics

Favourites & Search

Star CVEs, threat groups, actors, tech, vendors, products
Bulk favourite operations
Quick-access tracked lists
Global search with auto-complete
Advanced product search

Account & Onboarding

User profile and organisation management
Team and member listing
Two-factor authentication
Light/dark theme
Guided 4-step onboarding wizard
AI-powered task recommendations

Developer API (paid plans)

API keys scoped per organisation
Hosted REST endpoints — fully documented
Read endpoints — CVE, EPSS, KEV, vendor, product
Threat intel — actors, groups, IOCs, sigma
Bulk export endpoints with pagination
AI triage and scoring callable from the API
Per-tier rate limits with HTTP 429 / 402 handling

FAQ

Pricing Questions

What happens when my credits run out?

Scans, triage runs, and brand-protection monitoring will pause until the next billing cycle or until you top up. Everything else — intelligence, dashboards, alerts — keeps working.

Do unused credits roll over?

No — credits reset to your plan quota at the start of each billing period. Anything left from the previous period is forfeited. This keeps pricing predictable; if you need a custom rollover policy, talk to sales.

Can I top up mid-cycle?

Yes. You can buy additional credits at any time at your plan's per-credit rate, or upgrade to a higher tier and pay only the prorated difference.

What's the difference between annual and monthly billing?

Annual is paid upfront and includes a bonus credit grant — 15% on Basic, 20% on Business, 25% on Enterprise. The effective per-credit cost is significantly lower.

Is there a free trial?

You can register for free and explore the full intelligence platform without a credit card. A paid plan is only required when you want to run EdgeProtect scans, triage, or brand monitoring.

How does the credentials reveal fee work?

When EdgeProtect surfaces exposed credentials, the underlying data sources charge per record. Ticking Reveal credentials on a scan adds a flat 500 credits and persists the records to your account.

How does API access work?

API access is available on every paid plan. Generate an API key in your dashboard, then call any documented endpoint. Each request debits credits at the rates above and is rate-limited per minute by tier — Basic 60, Business 300, Enterprise 1,000. Hitting the limit returns HTTP 429; running out of credits returns HTTP 402. Custom limits are available on Enterprise.

Start for Free. Scale when you need to.

No credit-card-required trial of the intelligence platform. Add a paid plan only when you want to run scans, triage, monitoring, or API.

Create Free Account Talk to Sales