Pricing

Plans & pricing for external exposure monitoring

Monitor external exposures, leaked-credential signals, and misconfigurations from one workspace. Starter covers external surface and brand risk; Business adds full attack surface inventory, credentials, ransomware intel, basic attack paths, supply chain, public code exposure, REST API tokens, and share links; Pro adds advanced validation, Telegram intel, reporting workflows, and outbound integrations. Business and Pro can add SCRYPEX Deep Validation for expanded external checks (see add-on below).

Billing

Create a free account first, or sign in to subscribe. All plans include a 14-day trial.

Starter

For small businesses establishing their security baseline

Asset limit
Up to 100 monitored assets
Domains, subdomains, and IP addresses
$179/month

or $1,790/year (save 2 months)

  • 2 root domains monitored
  • 30-day findings history (dashboard and retention)
  • Continuous external monitoring
  • Attack surface mapping
  • Security misconfiguration detection
  • SSL and encryption analysis
  • Email security (SPF, DMARC, DKIM)
  • Domain impersonation alerts
  • Brand abuse monitoring (detection)
  • Known vulnerability tracking (CISA KEV)
  • Asset change detection
  • Weekly threat summary email
  • Findings dashboard with remediation steps
  • Basic report export
  • 14-day free trial, no credit card
  • Domain takedown workflow (registrar abuse automation)
  • Credential breach monitoring
  • Dark web monitoring
  • Ransomware threat intelligence
  • Supply chain monitoring
  • Attack path visualization
  • Public code & repository exposure monitoring
MOST POPULAR

Business

For professional services firms and growing organizations

Asset limit
Up to 300 monitored assets
$349/month

or $3,490/year (save 2 months)

  • Everything in Starter
  • Up to 5 root domains
  • Domain takedown workflow (WHOIS lookup, abuse drafts, submission tracking)
  • Credential breach monitoring
  • Public code & repository exposure monitoring
  • Dark web exposure detection
  • Ransomware threat actor monitoring
  • Attack surface ports and services inventory
  • Technology inventory and EOL tracking
  • Basic attack path correlation
  • Supply chain risk monitoring
  • Password policy credential scoring
  • Real-time critical alerts
  • Alert suppression and tuning
  • Executive PDF report export
  • REST API access and API tokens
  • Read-only share links for stakeholders
  • Vendor Watch (up to 3 vendor domains; count toward your asset cap)
  • Priority email support
  • SCRYPEX Deep Validation add-on: $399/authorized run
  • 60-day findings history (dashboard and retention)
  • 14-day free trial
  • Advanced attack path scoring and historical graphing
  • Telegram threat intelligence
  • Advanced workflow integrations (Jira, Microsoft Teams, Slack, ServiceNow)

Pro

For security teams and organizations with complex infrastructure

Asset limit
Up to 1,000 monitored assets
$699/month

or $6,990/year (save 2 months)

  • Everything in Business
  • Up to 15 root domains
  • Advanced attack path scoring and historical graphing
  • SCRYPEX Deep Validation: 1 included scan per quarter
  • Extra Deep Validation runs: $249 each
  • Telegram threat intelligence
  • Advanced alert rules and thresholds
  • Outbound integrations (Jira, Microsoft Teams, Slack, ServiceNow)
  • Bulk findings export
  • Scheduled and compliance-ready reports
  • 90-day findings history (dashboard and retention)
  • Priority support (response within 4 hours)
  • 14-day free trial

MSSP / Enterprise

For security teams managing multiple client organizations

Asset limit
Custom
Custom pricing

Tailored to your deployment

  • Everything in Pro
  • Higher asset and domain limits (10,000 assets, 50 root domains)
  • 365-day findings history (dashboard and retention)
  • Multi-tenant client management
  • White-label reporting
  • Volume discounts
  • Dedicated onboarding support
  • SLA guarantees
  • API access for client data integration
  • Custom integrations available

SCRYPEX Deep Validation

Optional expanded external checks using additional detection templates. This is not a manual penetration test. You authorize each run; audit records are stored in Settings.

  • Business: $399 per authorized domain scope (monthly add-on)
  • Pro: 1 scan per quarter included (MSSP: custom)
  • Pro extras: $249 per additional run

Purchase add-on credits from the Deep Validation page (Business $399/run; Pro extras $249/run when quarterly included scan is used).

What counts as a monitored asset?

Billable assets include root domains, discovered subdomains, and associated IP addresses. Open ports, SSL certificates, email records, and detected technologies are monitored at no extra charge.

External monitoring in one place

SCRYPEX maps your attack surface, tracks brand abuse, and surfaces credential and dark web exposure alongside ransomware and public code signals. Remediation steps are written in plain language and included at each tier based on your asset and domain limits.

Secure checkout via Stripe · Cancel anytime · No long-term contracts

Security teams: see our Trust Center for data handling, subprocessors, and DPA requests.