ForethreatForethreat
Services Pricing Training About Contact Legal
Pricing · Authorized Testing Only

Pricing built for real security outcomes.

Start free, scale into a contract. Pay one-off or in monthly installments. Every engagement is scoped to your environment — the figures below are starting points; your final quote follows a short scoping call.

FOUNDING CLIENTS

Founding Client Program — limited intro pricing

We're onboarding a small number of founding clients. In exchange for a short testimonial or reference on completion, you get 15–20% off your first engagement — same depth, same reporting, same quality.

  • Limited spots, so every engagement gets full founder attention
  • Lock in founding rates before standard pricing applies
  • Applies to any one-off test, retainer, or bootcamp below

1 · Free Security Baseline Assessment

Your no-cost starting point. Experience the quality before you spend a dollar.

FREE · LIMITED

Security Baseline Assessment

$0 / one asset

Designed to uncover real risk and demonstrate exposure. Not a full penetration test.

  • Testing of one asset — web application or external network
  • Identification of 3–5 real, evidence-backed vulnerabilities
  • Executive-level risk summary + high-level remediation guidance
  • 30-minute readout call
Claim your free baseline ↗

2 · One-Off Penetration Tests (Project-Based)

A fixed-scope, fixed-price engagement with a full professional report. Ideal for compliance, due diligence, pre-launch, or a point-in-time assessment.

Web Application Test

from $4,500

Per application · scoped by roles, dynamic pages & functionality

  • Full OWASP-aligned methodology
  • Auth, access control, business logic
  • Professional report + CVSS + attack paths
  • 1 complimentary retest of fixed findings
Request a quote

API Penetration Test

from $4,000

Per API · scoped by number of endpoints

  • REST & GraphQL
  • BOLA/IDOR, broken auth, mass assignment
  • Token/JWT handling & rate limiting
  • 1 complimentary retest of fixed findings
Request a quote

External Network Test

from $3,500

Scoped by number of live hosts / IPs

  • Attack-surface mapping & enumeration
  • Vulnerability validation (no scanner-spam)
  • Hardening recommendations
  • 1 complimentary retest of fixed findings
Request a quote
HIGH VALUE

Internal / Active Directory Test

from $6,500

Scoped by hosts, domains & assumed-breach goals

  • AD enumeration & credential attacks
  • Kerberos abuse, privilege escalation
  • Lateral movement & domain-compromise paths
  • 1 complimentary retest of fixed findings
Request a quote

Bundle: 2+ test types

save 10–15%

Combine e.g. Web + API, or External + AD

  • Single coordinated engagement
  • Unified report & attack-path narrative
  • Best value for a fuller picture
Ask about bundles

Day Rate (custom work)

$1,400 / day

For non-standard or exploratory scopes

  • Transparent, time-boxed
  • Typical engagements: 3–8 days
  • Quoted after scoping call
Discuss custom scope
Payment for one-off projects: 50% deposit to book, 50% on report delivery — or pay in full upfront for a 5% discount. Card, ACH, or PayPal. Monthly installment plans available on engagements over $4,000.

3 · Security Retainers (Recommended)

Move from reactive to proactive. A predictable monthly relationship with scheduled testing, retesting, and direct access. Minimum 3 months; best value on 6–12.

Essentials

$1,500 / month

3-month minimum · for a single primary asset

  • Scheduled testing of one asset type
  • Continuous vulnerability validation
  • Retesting after fixes
  • Email support · monthly check-in
Start Essentials
MOST POPULAR

Professional

$2,750 / month

6-month term · for growing environments

  • Rotating testing across Web, Network, API & AD
  • Testing of new features & releases
  • Unlimited retesting of fixed findings
  • Direct communication (Slack/email) + quarterly readout
Start Professional

PTaaS / Enterprise

from $4,500 / month

Continuous testing retainer — founder-led, capacity-limited

  • Ongoing, attacker-driven testing across your assets
  • Every new feature/update tested as it ships
  • Priority support & rapid retesting
  • Attestation letters; reporting portal on the roadmap
Talk to founder
Limited capacity: as a founder-led practice, only a few retainer clients are taken at a time — each gets direct, senior attention.  ·  One-time onboarding fee: $750 (waived on 12-month prepay).  ·  Prepay a year, get 2 months free (≈16% off).  ·  Retainers are billed monthly via secure Stripe subscription, or invoiced quarterly/annually (ACH preferred).

4 · Add-Ons & À La Carte

Stack onto any engagement.

Add-onPriceNotes
Additional retest (beyond included)$750Verify remediation of fixed findings
Rush / expedited scheduling+25–50%Priority slot, compressed timeline
Phishing / social-engineering modulefrom $1,500Authorized email phishing campaign
External + dark-web exposure check$500Leaked creds & exposed assets
Letter of Attestation (for compliance/clients)$500Signed summary suitable for third parties
Executive readout presentation (live)$350Stakeholder-facing walkthrough
Remediation re-architecture consult$1,400 / dayHands-on hardening guidance

5 · Training & Bootcamps

1-on-1 coaching and immersive bootcamps in offensive security.

See training & bootcamp pricing →

Payment Options

Flexible, secure, and built for businesses and individuals alike.

Pay by Card or ACH

Secure checkout via Stripe. Cards, Apple/Google Pay, and bank ACH (lower fees for larger invoices).

Pay an invoice ↗

PayPal

Prefer PayPal? Pay deposits, invoices, or training fees directly. PayPal Pay Later available on eligible amounts.

Pay with PayPal ↗

Installment Plans

Split larger engagements and bootcamps into monthly payments via Stripe (and Klarna/Affirm where eligible). Ask for a plan when you book.

Request a plan
All payments are tied to a signed engagement agreement and authorization. Deposits are non-refundable once testing begins. Full terms in your proposal & legal documents.