Step 1
What service do you need?
Select the option that best fits your situation.
Vulnerability Scan
Automated scan of your attack surface with risk reporting
External Penetration Test
Manual testing of your internet-facing assets
Internal Penetration Test
Testing your internal network as if an attacker is already inside
Pentest Bundle
External + Internal — most comprehensive option
General Security Consultation
Talk through your security posture, concerns, or a specific question with an expert
Not sure yet
Let's figure it out on a call
📞
Let's talk it through.
No problem — a 15-minute call is the fastest way to figure out what you actually need. No sales pressure, just straight answers.
Step 2 of 2
What do you want to talk through?
Pick the closest fit — we'll cover anything on the call.
Overall security posture
Where do we stand? What should we prioritize?
Specific system or concern
Something you've noticed or want a second opinion on
Compliance or audit prep
Getting ready for SOC 2, PCI, HIPAA, or similar
Building a security program
Where to start, what to prioritize, how to staff
Not sure — just want to talk
Step 2 of 3
What are we scanning?
Select your environment type.
External-facing assets
Public IPs, domains, internet-facing services
Internal network
Servers, workstations, and devices on your private network
Both
Full coverage — external and internal
Step 3 of 3
Roughly how many IPs or hosts?
An estimate is fine — we confirm during scoping.
Good news
Your scope fits a fixed package.
No custom scoping required. Book directly — we'll confirm the details.
Recommended
Vulnerability Scan — Standard
Starting at $1,000 · Fixed scope, up to 25 IPs
- External-facing asset scan (up to 25 IPs/domains)
- Automated + manual verification of findings
- Risk-rated report with remediation guidance
- 1 follow-up call to walk through findings
Step 2 of 4
What are we testing?
Select the type of assets in scope.
External IPs & domains
Firewalls, servers, VPNs, mail, and other internet-facing services
Web applications
Customer portals, admin panels, APIs, web-based tools
Both
Infrastructure and applications
Step 3 of 5
How many external IPs or domains?
Count each public IP and domain separately. Estimates are fine.
Step 3 of 5
How many web applications?
Count each distinct application or portal separately.
Good news
Your scope fits a fixed package.
No custom scoping required. Book directly — we'll confirm the details.
Recommended
External Pentest — Standard
Starting at $4,500 · Fixed scope
- Up to 5 external IPs/domains or 1 web application
- Manual exploitation — not just automated scanning
- Full pentest report with CVSS-scored findings
- Remediation guidance + 1 debrief call
Step 2 of 5
Roughly how many internal devices?
Servers, workstations, and networked devices. Estimates are fine.
Step 3 of 5
Do you have an Active Directory environment?
Active Directory is Microsoft's domain and user management system — common in Windows networks.
Step 4 of 5
On-site access or remote?
This affects how we connect to your internal network during the test.
On-site
Our team comes to your location
Remote
You provide VPN or jump-box access
Step 2 of 6 — External Scope
How many external IPs or domains?
The internet-facing portion of the bundle.
Step 3 of 6 — External Scope
Web applications included?
Customer portals, admin panels, APIs — anything browser-accessible.
Step 4 of 6 — Internal Scope
How many internal devices?
The internal portion of the bundle.
Step 5 of 6 — Internal Scope
Active Directory environment?
Microsoft domain and user management — common in Windows networks.
Good news
Your scope fits our standard bundle.
Everything in one engagement. No custom scoping required.
Best Value
Pentest Bundle — Standard
Starting at $8,500 · External + Internal
- External penetration test (up to 5 IPs/domains)
- Internal penetration test (up to 50 devices)
- 8 hours of remediation support included
- Combined report with unified risk view
- Debrief call + remediation Q&A session
Step 4 of 5
What's driving this engagement?
Helps us understand your context and tailor the report format.
Compliance or audit requirement
SOC 2, PCI DSS, HIPAA, ISO 27001, or similar
Client or contract requirement
A customer or partner is requiring it
Cyber insurance
Insurer is requiring or recommending it
Proactive — want to know where we stand
First time testing
Never done this before, starting fresh
Almost there
What report format do you need?
We'll make sure our output matches your requirements.
Standard pentest report
Full technical findings with CVSS scores and remediation steps
Compliance-ready
Formatted for PCI DSS, SOC 2, HIPAA, or ISO 27001
Executive summary
Business-language overview for non-technical stakeholders
All three
Technical report + compliance format + executive summary
Almost there
Have you had a pentest before?
Helps us calibrate scope and set the right expectations.
Almost there
Anything specific to focus on?
Optional. Specific systems, recent changes, known concerns — whatever would be useful for us to know.
✓
Request received.
We'll review your scope and follow up within one business day to discuss next steps.