Free
Prove the platform on your first target. No credit card required.
- 1 Target domain
- 3 Scans per month
- 1 Concurrent scan
- 1 Team member (solo)
- Subdomain discovery
- Nuclei vulnerability scanning
- Real-time scan dashboard
- PDF reports
- Community support
Starter
For growing pentest teams running continuous assessments.
- 5 Target domains
- 25 Scans per month
- 2 Concurrent scans
- Up to 5 team members
- Subdomain discovery
- Nuclei vulnerability scanning
- Real-time scan dashboard
- PDF executive & technical reports
- Scan scheduling (daily / weekly / monthly)
- Email alerts
- Email support
Pro
For mature security teams who need depth, scale, and integrations.
- 25 Target domains
- 150 Scans per month
- 5 Concurrent scans
- Up to 25 team members
- Subdomain discovery
- Deep scan mode (SQLi, XSS, LFI, RCE)
- Nuclei vulnerability scanning
- Real-time scan dashboard
- PDF executive & technical reports
- Scan scheduling (daily / weekly / monthly)
- Webhook alerts (Slack, Discord, Teams)
- Email alerts with PDF attachment
- Priority support & SLA
Enterprise
For large organizations, MSSPs, and teams with compliance requirements.
- Unlimited target domains
- Unlimited scans per month
- Unlimited concurrent scans
- Unlimited team members
- All Pro features included
- White-label PDF reports
- SSO / SAML integration
- Dedicated customer success manager
- Custom SLA (4h response, 99.9% uptime)
- Custom data retention policies
- Volume licensing for multiple clients
Starter and Pro include a 7-day free trial. Cancel before day 8 — pay nothing. Need a custom plan?
Compare
Full Feature Breakdown
| Feature | Free | Starter | Pro | Enterprise |
|---|---|---|---|---|
| Targets | 1 | 5 | 25 | Unlimited |
| Scans / month | 3 | 25 | 150 | Unlimited |
| Concurrent scans | 1 | 2 | 5 | Unlimited |
| Team members | 1 | 5 | 25 | Unlimited |
| Subdomain discovery | ||||
| Nuclei vulnerability scanning | ||||
| Deep scan mode (SQLi, XSS, RCE) | ||||
| Real-time scan dashboard | ||||
| PDF reports (executive & technical) | ||||
| Scan scheduling | ||||
| Email alerts | ||||
| Webhook alerts (Slack, Discord, Teams) | ||||
| White-label reports | ||||
| SSO / SAML | ||||
| Custom SLA |
FAQ
Pricing Questions
A target is a root domain you register for continuous security monitoring — for example, acme.com. PentestCheck automatically discovers subdomains, open ports, HTTP services, and vulnerabilities across every discovered asset under that root domain. One target can surface dozens of subdomains and hundreds of findings.
Still have questions? Contact support
How does PentestCheck compare?
See how our pricing and feature set stacks up against the most popular EASM alternatives.
Start scanning your attack surface today
Free plan — no credit card required. One target, three scans per month, full Nuclei coverage. Upgrade when you need more.