Frequently Asked Questions

No. We do not need access to your code base. We can find vulnerabilities without that access by monitoring the API calls your app makes, which is sufficient for our comprehensive security analysis.

Yes, the programming language or your tech stack is immaterial to us. Since we don't need access to your code base, we can work with any technology stack. We monitor API calls and perform security analysis regardless of the underlying technology.

Within minutes. We have dedicated security staff monitoring bug reports, and our experts can verify fixes quickly and inform you immediately if the remediation is successful.

Yes. We offer refunds for the remaining months of your subscription if you decide to discontinue our service. Please refer to our refund policy for complete details.

Our pricing is standardized. However, if you are a bootstrapping startup, please reach out to us at [email protected] and we will work something out to support your growth.

We detect a wide range of vulnerabilities including SQL injection, XSS, authentication bypasses, logic flaws, payment vulnerabilities, data leaks, API security issues, mobile app vulnerabilities, and open-source component vulnerabilities.

For our Standard plan, we provide weekly security reports. Enterprise customers receive on-demand reporting with real-time alerts for critical vulnerabilities. All reports include detailed findings, risk assessments, and remediation guidance.

Yes, we provide compliance reporting for various standards including PCI DSS, SOC 2, GDPR, and other regulatory requirements. Our reports help you meet audit requirements and maintain compliance standards.