Patch the findings
Critical SQLi, XSS, broken auth — our engineers ship the fix as a PR you can review.
/ Stacks we audit
Every target is proven yours via DNS TXT, HTML meta, or a .well-known file. The sandbox firewall pins egress to those IPs only — the agent physically can't reach anything else.
A new approach
example.com
verifiedDNS TXT
soleye-verify=8f3a92b1
203.0.113.42 ALLOWED
203.0.113.43 ALLOWED
0.0.0.0/0 DENIED
/ Step 01
60 seconds. DNS TXT, meta, or .well-known. Then the firewall pins egress to your IPs only.
new scan
/ Step 02
Deterministic toolkit — nuclei, sqlmap, wpscan, ffuf. Or schedule it on cron.
ai mission · running
claude-4-6
/ Step 03
Pre-vetted scripted actions, typed parameters, no freeform shell. Cost-capped, audit-logged.
executive.pdf
Q1 attack surface review
1 critical
3 high
5 medium
2 low
/ Step 04
Executive PDF for leadership, technical PDF with reproduction commands, JSON for Jira.
/ No-risk offer
Industry pentest starts at $50,000
$50,000
We run the full pentest. You read the report. You only pay if you decide to continue.
Step 01
Send the link
Step 02
We audit it free
Step 03
You get the proof
Step 04
We help fix it
Free queue · 2–3 business days
Paid customers — scans start instantly
After the audit
A pentest report is half the work. Our engineers ship the patches, harden the stack, and review the next batch of code before it reaches prod.
Critical SQLi, XSS, broken auth — our engineers ship the fix as a PR you can review.
CSP, HSTS, secure cookies, WAF rules, secrets rotation — the boring stuff that closes 80% of risk.
We read the diff before you ship. Catches the next batch of bugs before they reach prod.
Pager-style availability when something goes wrong at 3am. Ongoing security partnership.
Free 15-min scoping · priced per finding or by retainer
/ Confidentiality
/ Encrypted
Encrypted at rest
AES-256 in your tenant. Per-org keys. We can't read your raw data even if we wanted to.
/ Private
Never shared
No third-party sharing. No training. No marketing. Findings exist only between us and you.
/ Deleted
Wiped on request
After the engagement closes, raw scan artefacts are purged. One click to delete everything early.
Pricing
One-time $99 audit. If we find issues, pick a fix package — priced by how serious the report turns out to be. No subscriptions, no auto-renewals.
/ Start here
$99one-time
One-time, per domain.
SLA · 1 business day
No subscription · one-off purchase
/ If we find issues
Tiers are framed by how many critical findings we patch — all other severities (high · medium · low · info) are included in every tier.
Fast turnaround, focused scope.
$399one-time
1–2 critical findings · all other findings included.
SLA · 2 business days
The default for most reports.
$899one-time
3–4 critical findings · all other findings included.
SLA · 3 business days
When the report is rough.
$1999one-time
Unlimited critical findings · everything addressed.
SLA · 5 business days
/ Custom · Quote on scope.
Large systems · compliance · multi-service · retainer-style work.
Operator · just now
“On it — give me 5 min.”
/ Your dedicated manager
Every paid request gets a dedicated account manager. Questions about the report, scope changes, late-night incident triage, or just figuring out where to start — one chat away.
Avg response
<30 min
on Telegram, working hours
Office hours
9–21 UTC
incidents — 24/7
Languages
EN · RU · DE
no jargon, real answers
/ Get in touch
A real human reads every message. Whether you want a free audit, a trial, or just a sanity check — pick a channel.
/ Sister network
Same team, three brands.
/ Sister product
Open-source intelligence on people, companies, infrastructure and leaks. Same engine that powers SolEye’s recon, but pointed at the public web — investigations, due-diligence, threat intel, brand monitoring.
When defence isn’t enough — see what attackers see.
/ Built by
Full-stack IT development studio. We ship web apps, SaaS platforms, AI tooling, and mobile products for fast-moving teams. SolEye is one of them.
Need a custom build? Same team, different briefs.
SolEye community
Got a question or want to swap notes with other red-teamers? Drop into our Telegram — support lives there too.
Join the channel →