monthly
annual (save 20%)

Free

For companies getting started with security
-
/ forever
Infrastructure
Toltip-icon
Scan your external infrastructure — IPs, websites, servers, container images and cloud assets —  for misconfigurations and exposed services.
5
Web apps
Toltip-icon
Authenticated dynamic application security testing (DAST) on web apps and APIs you control — not needed for off-the-shelf software you don't own. Covers the OWASP Top 10, vulnerable components and APIs.
Not included
START FREE TRIAL
Includes
Weekly external vulnerability scans
Weekly cloud security checks for 1 connected account
Weekly container image scans for 2 images
Monitoring on ports 80 and 443
1 AI investigation credit
Remediation scans
Cyber hygiene score
3 users
14-DAY FREE TRIAL

Cloud

BEST VALUE
For cloud native companies
-
/ month
-
annually
Infrastructure
Toltip-icon
Scan your external infrastructure — IPs, websites, servers, container images and cloud assets —  for misconfigurations and exposed services.
Web apps
Toltip-icon
Authenticated dynamic application security testing (DAST) on web apps and APIs you control — not needed for off-the-shelf software you don't own. Covers the OWASP Top 10, vulnerable components and APIs.
START FREE TRIAL
All Free features +
Emerging Threat Scans
Custom scan schedules
Daily cloud security checks for 3 cloud accounts
Daily container image scans
Web app & API testing
Monitoring on the top 10 ports
GregAI virtual security analyst
5 AI investigation credits
15+ integrations

Pro

For companies with hybrid environments
-
/ month
-
annually
Infrastructure
Toltip-icon
Scan your external infrastructure — IPs, websites, servers, container images and cloud assets —  for misconfigurations and exposed services.
Web apps
Toltip-icon
Authenticated dynamic application security testing (DAST) on web apps and APIs you control — not needed for off-the-shelf software you don't own. Covers the OWASP Top 10, vulnerable components and APIs.
Talk to Sales
All Cloud features +
Support for 10 cloud accounts
Agent-based scanning for internal servers and employee devices
Monitoring on the top 100 ports
10 AI investigation credits

Enterprise

For companies with large attack surfaces
Infrastructure
Toltip-icon
Scan your external infrastructure — IPs, websites, servers, container images and cloud assets —  for misconfigurations and exposed services.
Custom
Web apps
Toltip-icon
Authenticated dynamic application security testing (DAST) on web apps and APIs you control — not needed for off-the-shelf software you don't own. Covers the OWASP Top 10, vulnerable components and APIs.
Custom
Talk to Sales
All Pro features +
Automated shadow IT and unknown asset discovery
Monitoring on all ports
1,000+ attack surface checks
50 AI investigation credits
Unlimited cloud accounts
Proactive threat response and custom Intruder checks
Advanced access control
* Prices are subject to VAT.
G2 logo
4.8 out of 5
4.7 out of 5
Our customers say we’re excellent 4.8 out of 5 based on over 150 reviews from G2

Plans for lean, time-strapped teams

Free

Cloud

Pro

Enterprise

What you can scan*

Included
1 account
Included
3 accounts
Included
10 accounts
Included
Unlimited accounts
Included
Port 80 & 443
Included
Top 10 ports
Included
Top 50 ports
Included
All ports
*Subject to your purchased licence terms

How you scan it

Included
1 per month
Included
Unlimited
Included
Unlimited
Included
Unlimited
Included
Unlimited
Included
Unlimited
Included
Unlimited
Included
Monthly
Included
Weekly
Included
Weekly
Included
Daily
Included
Daily
Included
Daily
Included
Daily

How you see it

Included
Watermarked
Included
Included
Included

Plan license details

Included
Every 4 weeks
Included
Every 4 weeks
Included
Every 4 weeks
Included
Every 4 weeks

Tools for teams

Included
3 users
Included
Unlimited
Included
Unlimited
Included
Unlimited
Slack
Slack
Slack
Teams
Teams
Teams
Jira
Jira
Jira
GitHub
GitHub
GitHub
GitHub
GitLab
GitLab
GitLab
GitLab
ServiceNow
ServiceNow
ServiceNow
Azure DevOps
Azure DevOps
Azure DevOps
Zapier
Zapier
Zapier
API
API
API
Okta
Okta
Okta
AWS accounts
AWS accounts
AWS accounts
AWS organizations
Google Cloud
Google Cloud
Google Cloud
Google Cloud
Azure
Azure
Azure
Azure
Cloudflare
Cloudflare
Cloudflare
Cloudflare
Drata
Drata
Drata
Vanta
Vanta
Vanta
Microsoft Sentinel

Support and services

Knowledge center

Included
Included
Included
Included

Onboarding support

Included
Included
Included

Dedicated Customer Success Manager

Included

Payment

Frequency

Included
Monthly or annually
Included
Monthly or annually
Included
Annually

Credit card payments

Included
Included

Multi-year discount

Included
Included
Included

Payment by invoice

Included
Available for 250+ licenses
Included
Available for 250+ licenses
Included

Read our reviews on G2.com

What's included in the free trial?

Our free trial includes all the features of the Cloud plan, along with 5 free licenses which allow you to scan your systems and carry out authenticated web application scans. You can scan 5 targets as many times as you like during the 14 days. If you need more than 5, no problem - just get in touch!

Can I change the number of targets after I've signed up?

Absolutely, you can increase or decrease your licenses as and when you need. A license is used each time you scan a target, and stays used for 30 days. So you just need to make sure you have enough licenses for each 30 day period.

On both annual and monthly plans, increases are pro-rated, and any decreases are credited to your account, up until the next billing period.

How is your pricing calculated?

Our pricing for Essential, Cloud, and Pro consists of a base fee plus a small fee-per-target. Application targets allow you to scan the underlying infrastructure by default. Pricing for Enterprise is quoted separately, as it depends on your specific requirements and the size/complexity of your systems. 

Does your pricing include VAT?

The prices shown are exclusive of VAT.

Does Intruder do authenticated web application security scanning?

Yes, you can carry out authenticated web application scans using Intruder. This includes checks for modern web apps, APIs, and single page applications (SPAs), to learn more, visit here.

Can I use Intruder to meet my security compliance requirements?

Absolutely, we have many customers using our reports to pass compliance with standards such as SOC2, Cyber Essentials, ISO 27001 and many more. In addition, our reports have been used to pass B2B supplier security audits from some of the biggest companies in the world.

What kind of support does Intruder provide?

We pride ourselves on delivering excellent customer service and offer live chat support for all our customers. Enterprise customers also have additional access to dedicated security professionals.

Do you offer any discounts for non-profit organizations?

Yes, we do! If you're a non-profit organization, contact us for more information. 

Is there a minimum time commitment to the service?

When you subscribe to our service you can choose either a monthly rolling plan, which you can cancel at any time, or an annual plan. 

How much does it cost to scan an internal target?

All infrastructure targets are priced the same, whether they are internal, external or cloud. However internal target scanning is only available on our Pro and Enterprise plans.