Attack Surface Management
Automatic detection & classification
of your on-prem & cloud IT assets
Continuous Security Monitoring
Instant detection of misconfigured,
vulnerable or outdated IT assets
Third-Party Risk Management
Special package for holistic
monitoring of your vendors
Dark Web Monitoring
Rapid detection of data breaches,
compromised systems or users
Cyber Threat Intelligence
Continuous monitoring of malicious
activities against your company
Instant Online Purchase
Secure online payment to instantly
start using the product
24/7 monitoring of your brand mentions in:
Compliant with “Legal Considerations when Gathering Online Cyber Threat Intelligence and Purchasing Data from Illicit Sources” guidelines by the U.S. Department of Justice
Monitoring of misconfigured or exposed cloud instances
Monitoring of 20,000+
network CVE-IDs
network CVE-IDs
Monitoring of misconfigured or
exposed SaaS/PaaS instances
exposed SaaS/PaaS instances
Detection of exposed
secrets in repositories
secrets in repositories
Detection of secrets
in container images
in container images
Monitoring of misconfigured
container orchestration tools
container orchestration tools
ImmuniWeb® Discovery Packages
Continuous Threat Exposure Management
| ImmuniWeb® Discovery | Ultimate package | Corporate Pro package | ASM package | Dark Web package |
|---|---|---|---|---|
| Dashboard & API Access User-friendly dashboard with possibility to export any data in PDF and Microsoft Excel, as well as a JSON API to seamlessly integrate the findings with your on-prem or cloud systems, such as SIEM of GRC. |  | | | |
| Unlimited Users All user accounts may have granular access permissions to get access only to specific assets or groups of assets based on their roles and permissions in the company. | | | | |
| Attack Surface Monitoring (ASM) Comprehensive discovery of all your domain names and subdomains, web applications and APIs, mobile apps and their endpoints, network services and devices, cloud instances and services, and IoT devices visible from the Internet. | | | | |
| Cloud Security Posture Management Non-intrusive detection of exposed, misconfigured or vulnerable cloud instances across over 250 public cloud services providers on top of AWS, GCP and Microsoft Azure. | | | | |
| Continuous Security Monitoring Non-intrusive detection of outdated or vulnerable web and networks software with actionable vulnerability analytics, misconfigured network services and cloud resources, exposed databases and repositories, DNS configuration errors, SSL/TLS encryption weaknesses and privacy issues. | | | | |
| Repositories Monitoring Monitoring of most popular source code repositories, as well as cloud-specific and vendors-specific repositories, for accidentally or purposely leaked source code and other data. | | | ||
| Cyber Threat Intelligence Comprehensive collection of illicit activities targeting your organization, its employees, clients or partners in both Dark Web and Surface Web including special or niche social networks, Telegram, IRC and almost a hundred of other places where cyber threat actors usually gather, as well ongoing monitoring of several hundreds of Indicator of Compromise (IoC) feeds for presence of your corporate domains, IP addresses and other assets. | | | | |
| Dark Web Monitoring In-depth monitoring of the traditional Dark Web resources and other underground places for stolen information and credit cards, compromised systems, user accounts and credentials of your executives, VIPs and employees. | | | | |
| Phishing & Squatting Detection Rapid detection of phishing and other malicious websites mimicking your corporate identity or brand, as well as typo-squatted and cyber-squatted domains, fake accounts on social networks and on Web3. | | | | |
| Phishing Websites Takedown Takedown of malicious phishing websites by administrative and legal measures usually taking from 24 to 72 hours to deactivate the illicit resource. | | |||
| Advanced Incident Monitoring Monitoring of VIPs exposure, detection of leaked credit cards and other sensitive financial information, customized search for leaks and incidents on both the Dark Web and Surface Web. | | |||
| Incident Investigation Assistance Rapid help from our security analysts with investigations on the Dark Web when collection of further evidence, intelligence or insights is needed for incident response and investigation. | | |||
| Copyright Infringement Monitoring Detection of various resources on the Internet that may illegally reproduce your texts, images, videos, voices or other creative content, as well as usurping your trademarks or brands. | | |||
| Updates Frequency All data is available on the user-friendly dashboard with an export to PDF and Microsoft Excel, while being fully manageable via a JSON API. | 24/7 | Daily | Daily | Daily |
| Price per Company Up to 10,000 IT assets per company without limitations, flexible pricing for any assets on top of it. Standard subscription duration is one year. | 4,495 EUR / month | 2,495 EUR / month | 1,495 EUR / month | 1,495 EUR / month |
| Dashboard Ready Your dashboard will be available on this date (if you purchase today). | March 25 | March 25 | March 25 | March 25 |
Because prevention is better
All payments can be made via a bank wire or secure online payment
ImmuniWeb is an efficient and very easy-to-use solution that combines automatic and human tests. The results are complete, straightforward and easy to understand. It’s an essential tool for the development of the new digital activities
Didier Ramella
CISO
ImmuniWeb is an invaluable tool for iPresent with both automated and manual penetration testing. The fantastic manual testing has found even the most hidden and complicated bugs in our security and ImmuniWeb has delivered first class knowledge. The self-service interface also gives us great control to schedule and monitor tests when we need them
Neil Bostrom
Chief Technical Officer
ImmuniWeb is the best and simplest way to secure your business online. It's really fantastic experience to get report with zero false positive with detailed actions how to resolve problems and remove vulnerabilities. I think ImmuniWeb is definitely the best alternative to pen testers. As well as a way to save on staff and other costs. I am glad that I can get it all without any hidden costs and without complicated licensing schemes
Nika Vachridze
Senior Information Security Officer
We believe ImmuniWeb platform would definitely address the common weaknesses seen in manual assessments. The AI-assisted platform not only automates the assessments, but also, executes them in a continuous, consistent and reliable fashion. Admittedly, the platform would definitely add quick wins and great ROI to its customers on their investment.
Abuhaneefa Fayaz
Information Security Officer
ImmuniWeb provides accurate assessment on the security posture of our cloud-based applications. The report provided is concise and easy to read with sound advisories on the necessary steps to fix the issues. What impressed me most was that no false positive was listed and the vulnerabilities are real. ImmuniWeb certainly gives us the right level of assurance that our cloud-based applications are safe and "good-to-go" before we deploy them out to production
Lee Chye Seng
Director, Learning Systems and Applications
ImmuniWeb is a great innovative service that brings unbeatable ROI. It is undoubtedly the best way to quickly and easily guarantee your customers that their data is safe with you - and yours too by the way! Efficient and effective!
Jean-Michel Beylard-Ozeroff
Head of IT
