Frequently asked questions

Name: Pentesty
Price: 5.00 USD
Rating: 4.9 (47 reviews)

Do I need to know how to code to use Pentesty?: No. You set up a domain, click Start, and download a PDF. The technical work happens automatically.
How long does a scan take?: Most analyses complete in under 10 minutes. Larger or more complex applications may take up to 20 minutes.
Do I need my own domain?: Yes. You must own the domain or have explicit written permission from the owner to test it. Pentesty requires domain verification before any scan can run.
Is my data safe?: Pentesty does not store your application code or data. Only the findings and metadata from the scan are retained. Reports are encrypted and only accessible from your account.
Can I share the report with clients or investors?: Yes. The PDF is designed exactly for that. The Executive Summary section is written in plain language suitable for non-technical stakeholders.
What is a false positive?: A false positive is when a security tool flags something as a vulnerability but it isn't actually exploitable. Our AI triage layer removes these automatically, so your report only contains real issues.
Which plan includes human pentester review?: Human pentester review is available on Enterprise plans only. The Free plan is fully automated with AI triage.
What vulnerabilities does Pentesty detect?: Pentesty runs 10,000+ checks covering the OWASP Top 10, exposed admin panels, SSL/TLS misconfigurations, outdated software with known CVEs, injection flaws, authentication issues, and more.
Can I run more than one analysis?: Each plan includes a set number of analyses per month. Enterprise plans have custom volume pricing. Unused analyses do not roll over.

Frequently asked questions

Do I need to know how to code to use Pentesty?: No. You set up a domain, click Start, and download a PDF. The technical work happens automatically.
How long does a scan take?: Most analyses complete in under 10 minutes. Larger or more complex applications may take up to 20 minutes.
Do I need my own domain?: Yes. You must own the domain or have explicit written permission from the owner to test it. Pentesty requires domain verification before any scan can run.
Is my data safe?: Pentesty does not store your application code or data. Only the findings and metadata from the scan are retained. Reports are encrypted and only accessible from your account.
Can I share the report with clients or investors?: Yes. The PDF is designed exactly for that. The Executive Summary section is written in plain language suitable for non-technical stakeholders.
What is a false positive?: A false positive is when a security tool flags something as a vulnerability but it isn't actually exploitable. Our AI triage layer removes these automatically, so your report only contains real issues.
Which plan includes human pentester review?: Human pentester review is available on Enterprise plans only. The Free plan is fully automated with AI triage.
What vulnerabilities does Pentesty detect?: Pentesty runs 10,000+ checks covering the OWASP Top 10, exposed admin panels, SSL/TLS misconfigurations, outdated software with known CVEs, injection flaws, authentication issues, and more.
Can I run more than one analysis?: Each plan includes a set number of analyses per month. Enterprise plans have custom volume pricing. Unused analyses do not roll over.