Pricing
Scalable pricing models that grow with you
The world's most complete coverage at a fraction of the cost and complexity.
What's included
- Full-power Scans
- Accept & Remediate Risks
- Invite Your Team
- Scheduled Scans
- Custom Reporting
- Email Alerts for New Vulnerabilities
- Integrations with AWS, Azure, Vanta, Slack, and more
Everything in Basic, plus
- Authenticated Scans
- Custom Request Headers
- Internal Network Scanning
- Customize Email Recipients
- Developer APIs + Webhooks
- Export to CSV
Everything in Premium, plus
- Access to Enterprise Scanners from
- Custom Branding / Whitelabel Reports
- SAML SSO
- Access Controls / Workspaces
- Priority Support & Onboarding
Need more targets?
Each plan comes with 5 targets included. Add more to scale.
what's included
Plans and features
Power at scale, without the hassle.
Basic
$49/mo
Premium
$109/mo
Professional
$189/mo
Power
Full-power Scans
Many providers offer "Lite" versions of scanners which detect fewer and more basic risks. We offer the full-power of ZAP, OpenVAS, Nuclei, SSLyze and Nmap scanners
Basic
Premium
Professional
Vulnerability Management
Accept, remediate, and track the lifecycle of every vulnerability discovered by all scans across your infrastructure
Basic
Premium
Professional
Attack Surface Mapping
Automatically map your external attack surface to discover untracked domains, exposed assets and services you may have missed
Basic
Premium
Professional
Health Score Tracking
Monitor your security posture over time with a clear, actionable health score for targets and your account
Basic
Premium
Professional
Unlimited Team Members
Invite your entire team at no extra cost so everyone stays on the same page
Basic
Premium
Professional
Authenticated Scans
Scan behind login pages to find vulnerabilities that unauthenticated scans miss
Premium
Professional
Custom Request Headers
Add custom HTTP headers to ZAP scan requests for APIs and services that require authentication tokens
Premium
Professional
Internal Network Scanning
Deploy an internal scanning engine inside your network to scan internal hosts that are not exposed to the internet
Premium
Professional
Coverage
Nmap TCP/UDP Port Scanner
Discover open ports and running services across your infrastructure with the industry-standard port scanner
Basic
Premium
Professional
SSLyze SSL/TLS Scanner
Analyze your SSL/TLS configuration to find weak or vulnerable ciphers, expired certificates, and misconfigurations
Basic
Premium
Professional
OWASP ZAP Web Scanner
Automatically test your web applications for the OWASP Top 10 and other common web vulnerabilities, weaknesses and misconfigurations
Basic
Premium
Professional
Greenbone OpenVAS Scanner
Detect CVEs on your servers, routers, and firewalls with one of the most widely used open-source network scanners
Basic
Premium
Professional
Nuclei Scanner by Project Discovery
Fast, template-based vulnerability scanning for known CVEs, misconfigurations, and exposed services
Basic
Premium
Professional
OpenAPI / Swagger API Scanning via OWASP ZAP
Import your OpenAPI spec and automatically test every endpoint for security issues
Basic
Premium
Professional
Import Risks from Snyk, GitHub Dependabot or via API
Consolidate vulnerability data from third-party tools into a single report for unified management
Basic
Premium
Professional
OWASP ZAP Authenticated Scans
Run authenticated OWASP ZAP scans to test pages and functionality behind login forms
Premium
Professional
Greenbone OpenVAS for Internal Scanning
Deploy OpenVAS inside your network for deep internal vulnerability assessments
Premium
Professional
Greenbone Enterprise
Greenbone Enterprise feed detects vulnerabilities for enterprise products - MS Exchange, Palo Alto, Cisco, IoT/OT and more, along with compliance benchmarks
Professional
Tenable Nessus
Perform scans using the industry-leading Tenable Nessus scanner for comprehensive vulnerability assessments
Professional
Rapid7 InsightVM
Rapid7's InsightVM is a modern, cloud-enabled vulnerability scanner for enterprise-grade scanning
Professional
Easy-to-use
Custom Reporting Engine
Build tailored reports, filtered to the exact data your stakeholders need, including executive summaries, trends, and solutions
Basic
Premium
Professional
Scheduled Scans
Set scans to run automatically to meet compliance requirements, or on your preferred schedule
Basic
Premium
Professional
New Threat Alerts
Get notified when new vulnerabilities are discovered that affect your infrastructure
Basic
Premium
Professional
Integrations with AWS, Azure, Vanta, Slack, and more
Connect your existing tools and workflows to automate target imports, receive notifications, and manage compliance
Basic
Premium
Professional
Customize Email Recipients
Control exactly who receives scan results and alert notifications for each target
Premium
Professional
Developer APIs & Webhooks
Programmatically manage targets, trigger scans, and receive results via REST API and webhooks
Premium
Professional
Export to CSV
Download your vulnerability data as CSV files for offline analysis and custom reporting
Premium
Professional
Custom Branding / Whitelabel Reports
Add your company logo, colors, and domain to reports for a fully branded client experience
Professional
Priority Support & Onboarding
Get dedicated onboarding assistance and priority access to our support team
Professional
Trust & Security
SOC 2 Type II Report
HostedScan maintains SOC 2 Type II compliance so you can trust us with your security data
Basic
Premium
Professional
Single Sign-On (SAML 2.0)
Enforce your identity provider policies with enterprise SAML-based single sign-on
Professional
Fine Access Controls / Workspaces
Segment targets and data into isolated workspaces with role-based access controls
Professional
From Our Customers
What our customers are saying
“We partnered with HostedScan to solve a critical need for our business: continuous, effective, and automated vulnerability scanning. We trust tools like OpenVAS, Zap and Nmap, but didn't have the time to automate them. HostedScan made it easy to scale them and organize the discovered vulnerabilities effectively.”
“We utilize HostedScan to penetration test our internet presence and internet facing assets on a daily basis to guarantee our internal security and support of our businesses ISO accreditation requirements. HostedScan’s easy to use UI and excellent support services provides both our business with immeasurable value and peace of mind.”
“As a SaaS company we are constantly at risk of cyberattacks, therefore an effective vulnerability scanner is a critical component of our information security toolkit. Prior to adopting HostedScan, we struggled with an internally installed open-source tool, which proved too time-consuming and inefficient. After an extensive search for an alternative solution, we found HostedScan and decided to give it a try. We are glad we did.”
“We are a small charity and every dollar counts. I contacted their customer service team and asked if they had an option that would meet our needs. They understood our requirements and provided a solution that was an excellent fit. They have a fantastic product, but what makes them stand head and shoulders above the rest is their customer service.”
“HostedScan is our trusted partner for OWASP Top 10 testing and proactive security. Their platform is powerful, but it’s their dedicated support team that truly sets them apart.”
“Every time I log in, it absolutely amazes me how much work the HostedScan team has gotten done on the interface and new integrations. It is a fantastic group of tools and I hope every MSP is subscribing to it.”
“Really pleased with the solution, we are certainly using it more now than ever, simple to use and has proved a valuable solution.”
“I found your platform to be best-in-class for automated vulnerability assessment and reporting. I've already started suggesting it to other software teams.”
“We're so glad we found HostedScan. The platform doesn't just identify security issues—it gives us the visibility and confidence we need to stay on top of them. It's become a critical part of how we maintain our SOC 2 compliance, streamlining what used to be a time-consuming process.”
“We partnered with HostedScan to solve a critical need for our business: continuous, effective, and automated vulnerability scanning. We trust tools like OpenVAS, Zap and Nmap, but didn't have the time to automate them. HostedScan made it easy to scale them and organize the discovered vulnerabilities effectively.”
“We utilize HostedScan to penetration test our internet presence and internet facing assets on a daily basis to guarantee our internal security and support of our businesses ISO accreditation requirements. HostedScan’s easy to use UI and excellent support services provides both our business with immeasurable value and peace of mind.”
“As a SaaS company we are constantly at risk of cyberattacks, therefore an effective vulnerability scanner is a critical component of our information security toolkit. Prior to adopting HostedScan, we struggled with an internally installed open-source tool, which proved too time-consuming and inefficient. After an extensive search for an alternative solution, we found HostedScan and decided to give it a try. We are glad we did.”
“We are a small charity and every dollar counts. I contacted their customer service team and asked if they had an option that would meet our needs. They understood our requirements and provided a solution that was an excellent fit. They have a fantastic product, but what makes them stand head and shoulders above the rest is their customer service.”
“HostedScan is our trusted partner for OWASP Top 10 testing and proactive security. Their platform is powerful, but it’s their dedicated support team that truly sets them apart.”
“Every time I log in, it absolutely amazes me how much work the HostedScan team has gotten done on the interface and new integrations. It is a fantastic group of tools and I hope every MSP is subscribing to it.”
“Really pleased with the solution, we are certainly using it more now than ever, simple to use and has proved a valuable solution.”
“I found your platform to be best-in-class for automated vulnerability assessment and reporting. I've already started suggesting it to other software teams.”
“We're so glad we found HostedScan. The platform doesn't just identify security issues—it gives us the visibility and confidence we need to stay on top of them. It's become a critical part of how we maintain our SOC 2 compliance, streamlining what used to be a time-consuming process.”
Quick Answers
Frequently asked questions
Our knowledge base contains answers to technical questions, and you can always contact us for more details on our plans, pricing, or any questions.
With any paying account, you can create an unlimited number of targets in your account, however you can only scan the number of targets you are paying for each month.
This allows you to retain and manage all your historical risk, scan, and target data in one place, without on-going cost.
Our Customers
5,000+ MSPs and IT teams who move faster
Speed and power,
without the complexity
The world's leading vulnerability scanners, all in one platform.