Splorix
Start 3-Day Trial

Pricing

Predictable attack surface pricing.

Start with $1 for 3-day trial on your first eligible root domain, then keep each authorized root domain on $99/month per root domain slot. Subdomains discovered under that root are included.

  • $99/month per root domain slot.
  • Cancel anytime during the 3-day trial.
  • Reusable slots when a domain is deleted during the paid period.
  • 3 scans per calendar week per domain.

First domain offer

$1for 3-day trial

Then $99/month per root domain slot after the trial. Cancel anytime during the trial.

Start 3-Day Trial

Each paid slot covers one authorized root domain. Additional root domains need another slot unless a reusable slot is available.

What's included

One workspace for monitoring, context, alerts, and remediation.

Every paid root domain slot includes the external monitoring workflow, intelligence layers, and issue handling your team needs to stay ahead of exposure.

  • Authorized external attack surface scanning

    Monitor root domains you own or are authorized to assess with recurring visibility and on-demand scans.

  • Weekly scan scheduling and manual scans

    Choose up to three weekly scan days per domain and launch manual runs when infrastructure or releases change.

  • Security issue tracking

    Review severity, affected assets, evidence, reproduction notes, and remediation guidance in one workspace.

  • Subdomain discovery and inventory

    Keep discovered subdomains connected to the paid root domain slot so public scope stays easier to follow.

  • Ports and services context

    Understand which public services and exposed ports are visible around your monitored domain.

  • Tech stack fingerprinting

    See frameworks, CMS, libraries, analytics tools, and platform hints detected on internet-facing assets.

  • Endpoint inventory

    Track crawled paths and exposed application routes so teams know what their applications make reachable.

  • SSL intelligence

    Review certificate signals and TLS context for assets tied to your monitored domains.

  • Whois intelligence

    Keep registration and ownership metadata close to the domains you monitor.

  • Security.txt checks

    Verify whether security disclosure contacts are published where they should be.

  • Firewall and WAF detection

    Check whether common application firewall signals are visible and keep raw responses for verification.

  • Typosquatting monitoring

    Track registered lookalike domains for configured extensions and inspect permutation and DNS context.

  • Credentials leak monitoring

    Watch for credential exposure signals related to the monitored domain and route them into the same workflow.

  • Email alerts

    Notify the right people when findings cross the severity threshold you set for each domain.

  • Patch recommendations

    Give teams practical remediation guidance alongside findings and security signals.

  • Logs, scan history, and activity visibility

    Follow scan runs, callbacks, and workspace activity without rebuilding operational context elsewhere.

  • Ephemeral scanner infrastructure managed by Splorix

    Splorix spins up isolated runners for each job, ingests signed results, and tears infrastructure back down.

Plan limits

Clear boundaries for authorized monitoring.

Splorix keeps scope, scan cadence, and tooling expectations explicit so teams can plan monitoring without surprises.

  • Owned and client-approved domains

    Splorix fits internal teams, agencies, consultants, and SaaS builders monitoring domains they own or are approved to manage.

  • One paid slot per root domain

    Each paid slot covers one authorized root domain. Additional roots require another paid slot unless a reusable slot is available.

  • Three scans per calendar week

    Manual and scheduled scans share the same weekly allowance of three scans per domain.

  • Up to three scheduled days per week

    Pick up to three weekly scan days for each active domain while manual scans stay available within the same limit.

  • Up to 30 typosquatting extensions

    Configure the TLD extensions that matter to your brand while keeping typosquatting scans focused.

  • Review-friendly reports

    Findings include context, evidence, and remediation notes so teams can validate and act with a clear starting point.

How domain slots work

Pay per root domain, include the surface beneath it.

Slots are tied to authorized root domains, renew monthly, and stay understandable when your monitored scope changes.

01

$99/month per root domain slot

Billing is per authorized root domain slot at $99/month. The first eligible domain can start with $1 for 3-day trial.

02

Automatic renewal after the trial

After 3 days, the first domain renews automatically at $99/month unless you cancel during the trial.

03

Subdomains stay included

Discovered subdomains under a paid root domain are included in that slot. You do not pay per subdomain.

04

Deleted domains free the slot

When a root domain is removed, its paid slot can be reused by another authorized root domain during the current paid period.

FAQ

Pricing questions, answered.

Get started

Add your first root domain and turn on monitoring.

$1 for 3-day trial on your first eligible root domain, then $99/month per root domain slot. Cancel anytime during the 3-day trial.

  • Create a workspace and add a root domain you are authorized to assess.
  • Confirm ownership before the first scan is scheduled.
  • Subdomains discovered under the paid root stay included in that slot.
Start 3 day trial Sign up Back to home