Back to Top
asset1

PAY ONLY IF WE FIND A

CVSS >= 4.0

The deal's simple: we'll do a pentest, but you only pay if we find an exploitable and impactful (CVSS >= 4.0) vulnerability.
No matter the result, you'll always get a report for compliance audits in 5 days.

CTA2-2
  • UPORTO
  • COMPAL
  • NOS
  • RENAULT
  • LEROY
  • ANA
asset 3

From request to pentest in 5 days

You select the assets you want to be tested, and our AI Pentester will get to work. We'll get back to you after 5 days with a complete report, and you'll be charged only if we find an impactful vulnerability (CVSS >= 4.0)

No findings? No worries. You'll walk home with a report, suitable for compliance, and a full wallet.

dors-nos76-1

We have lots of security solutions, but I look at Ethiack first, because I know that when Ethiack alerts us, it’s always valid and most probably serious!

Pedro Zeferino, CISO @ NOS

They quickly identify vulnerabilities even with our fast frequency of deployment. We can sleep better at night knowing that if something shows up, we'll know right away.

Paulo Ribeiro, VP of Engineering @ Smartex

DSC07078-scaled
jannes

Their in-depth testing of our systems has transformed how we approach cybersecurity.

João Annes, CISO @ ANA Airports

hackian_1

How can it be free?

Because our AI is really good. It shocked DEFCON when it found 2 critical vulnerabilities, unassisted, during a live CTF, or when it found a one-click RCE on Clawdbot in under 2 hours. 40% of the findings it detects are impactful, and false positives are under 0.50%.

We've made the math, and the chances of finding an impactful finding in your assets is so high we can give you this guarantee.

the best price for the best pentest 

 

You're only charged if we find a CVSS >= 4.0 vulnerability. And even if we don't, you'll still get a compliance-ready report with everything we did find.
7000

YOU MAY NEED TO KNOW

Frequently Asked Questions

What's an impactful vulnerability?

Any exploitable finding with a CVSS score ≥4.0.

Can I choose which assets to test?

Yes, you can select up to 100 external-facing assets.

Will you withhold findings if we don't pay?

No, it's not ethical. You'll know of any findings we uncovered.

Can you test internal assets or mobile apps?

Not under this offer. Available as separate add-ons.

What if I already know about these vulnerabilities?

We assume that you patch findings as soon as they're uncovered, but you can let us know during sign up about any existing vulnerabilities.

Do I still get a report if you find nothing?

Yes, you'll get a compliance-ready pentest report no matter the outcome.

Do I need to install anything?

No installation required. We verify your ownership of the assets through a DNS record.

Is this pentest valid for compliance?

Yes, reports are compliance-ready for various frameworks.

SUBMIT AND START YOUR PENTEST

Submit the form and we'll begin testing immediately. Your report will be ready in 5 days.