No proprietary risk scoring, no per-asset upsells, no "contact sales" mystery. Every engagement is scoped up front and priced accordingly — these are real starting prices, not a lead-gen teaser.
Starting at $5,000
Single engagement, one perimeter
Starting at $5,000
Single engagement, one site/subnet
Starting at $8,500
The complete picture — external + internal
Final pricing depends on scope — number of hosts/subnets, site count, and whether it's a one-time or recurring engagement. The prices above are real starting points for a typical single-office environment, not a floor designed to be quoted up.
Most environments change enough over a year that a single point-in-time assessment goes stale. A quarterly retainer — four assessments a year — runs roughly 3× a single engagement's price, not 4×, so staying current costs less than re-booking one-off each time.
The same principle that shapes how we test — no proprietary scoring, full attribution for every tool used, nothing hidden from the client — applies to what it costs.
You work directly with the person doing the testing and writing the report — not a rotating pool of contractors, not a junior analyst working off a script while someone senior reviews it after the fact.
A suspiciously low "per-asset" quote is usually a sign of an automated scan wearing a pentest's clothing. These prices are for real, scoped assessment work — what's included is spelled out before you sign anything.
Every finding traces back to a named, credited open-source tool (nmap, Nuclei, testssl.sh, and others) — never an undisclosed proprietary risk algorithm you're asked to just trust.
Internal Network Assessments are strictly read-only — no password cracking, no exploitation, no lateral movement. For production-sensitive or healthcare environments, that's not a limitation, it's the point: real exposure visibility with no chance of causing an outage.
Tell us a little about your environment and we'll help you scope the right engagement and give you a firm number — no obligation.