What is Agent-as-a-Service pentesting?

Agent-as-a-Service (AaaS) pentesting lets you chat with autonomous pentesting agents that scan your application on demand. Instead of waiting weeks for a manual engagement, you talk to specialized agents — pen-scout (recon and surface mapping), pen-recon (deeper enumeration), pen-triage (validates and prioritizes findings), pen-fixer (remediation guidance), and pen-compliance (OWASP/standards mapping). Findings are validated with proof-of-concept and re-test, not just flagged. You start with 150 free credits, no credit card.

What are credits and how do they work?

Credits are how you run agent scans. Each scan or agent action consumes credits based on its depth. New accounts get 150 free credits with no card required. After that you can buy one-time credit packs ($29, $79, or $199) for pay-as-you-go use, or subscribe to a monthly tier ($49, $149, or $399/mo) for continuous, on-demand pentesting. The agents pen-scout, pen-recon, pen-triage, pen-fixer and pen-compliance all draw from the same credit balance.

Yes. Every new account gets 150 free credits with no credit card required — enough to chat with the pentesting agents and run real scans against your app. There is also a free security headers scan at sable.somoswilab.com/free-scan and a sample report at sable.somoswilab.com/sample-report. The free tier runs on OpenRouter models so you can evaluate the autonomous agents before paying.

What is penetration testing for startups?

Penetration testing (pentesting) is a simulated cyberattack against your application to find security vulnerabilities before real attackers do. For startups, we focus on the issues that matter most at your stage: authentication flaws, data exposure, API security, and common mistakes in modern stacks like Next.js, Supabase, and Firebase.

How much does a pentest cost?

Traditional pentests cost $10,000-$50,000+. SableOffensive starts at $29 for a Pre-Launch Check covering OWASP Top 10 and secrets detection. Founder Shield ($79) adds IDOR testing, auth bypass, and a debrief call. Scale Secure ($199) is a full-scope assessment. Every plan includes a professional report with remediation steps.

How long does a security scan take?

Pre-Launch Check reports are delivered within 24-48 hours. Founder Shield and Scale Secure may take 2-3 business days depending on the complexity of your application.

What do I need to provide?

At minimum, just your application URL. For more comprehensive testing, we may ask for staging credentials, API documentation, or GitHub repository access. We sign NDAs for all engagements.

What is OWASP Top 10?

OWASP Top 10 is the industry standard list of the most critical web application security risks. It includes injection attacks, broken authentication, cross-site scripting (XSS), server-side request forgery (SSRF), and security misconfigurations. Every SableOffensive assessment tests against the full OWASP Top 10.

Do you test AI-generated code?

Yes. Code generated by AI tools like Cursor, GitHub Copilot, and v0 often contains subtle security issues: hardcoded secrets, missing input validation, insecure API patterns, and overly permissive access controls. We have specific testing procedures for AI-generated codebases.

How do you secure Supabase and Firebase apps?

For Supabase, we audit Row Level Security (RLS) policies, test for direct table access, and check for exposed service keys. For Firebase, we review security rules, test Firestore/RTDB access patterns, and check Cloud Functions for vulnerabilities.

What if you find zero vulnerabilities?

50% money back guarantee. If our scan finds zero security issues, you get half your money back.

Is there a free pentesting option?

Yes. SableOffensive offers a free security headers scan at sable.somoswilab.com/free-scan. It instantly checks your website for 8 critical security headers (HSTS, CSP, X-Frame-Options, and more) and gives you an A-F grade with copy-paste fixes. No signup or payment required.

Can I get a free vulnerability scan?

Our free security headers check scans your website instantly and grades your security posture. For a deeper free assessment, contact us — we occasionally offer complimentary scans for early-stage startups and open source projects.

Terms of Service | SableOffensive

These Terms of Service ("Terms") govern your use of the penetration testing and security assessment services provided by SableOffensive ("we," "us," or "our"). By engaging our services, you agree to be bound by these Terms.

1. Scope of Services

SableOffensive provides penetration testing and security assessment services for web applications, APIs, and cloud infrastructure. Our services include:

--Pre-Launch Check: Automated and manual security review covering OWASP Top 10, secrets detection, and basic API testing. Report delivered within 24-48 hours.
--Founder Shield: Comprehensive security assessment including IDOR testing, auth bypass attempts, business logic review, and a 30-minute debrief call.
--Scale Secure: Full-scope penetration test including infrastructure review, CI/CD pipeline analysis, third-party integration audit, and ongoing support.
--Custom Engagements: Tailored security assessments scoped to your specific requirements.

2. Authorization and Legal Testing

By engaging our services, you represent and warrant that:

--You own or have explicit written authorization to test the target applications and infrastructure
--You will provide a signed authorization form before testing begins
--Testing will only be performed against the agreed-upon scope; we do not test systems outside the defined scope
--You understand that penetration testing may cause temporary disruptions (we minimize this risk but cannot eliminate it entirely)
--All testing is conducted ethically and in compliance with applicable computer fraud and abuse laws

3. Liability Limitations

To the maximum extent permitted by law:

--SableOffensive is not liable for any indirect, incidental, or consequential damages arising from our testing
--Our total liability for any claim related to our services is limited to the amount paid for that specific engagement
--We are not responsible for vulnerabilities that emerge after the testing period or from code changes made after our assessment
--We are not liable for any downtime or service disruption that may occur during authorized testing windows
--Our reports represent findings at a specific point in time and do not guarantee future security

4. Payment Terms

Payment terms for our services:

--Payment is required in full before testing begins for Pre-Launch Check and Founder Shield plans
--For Scale Secure and custom engagements, a 50% deposit is required upfront with the balance due upon report delivery
--All prices are listed in USD; applicable taxes may apply based on your jurisdiction
--Invoices are sent via email; payment is accepted through our secure payment processor
--Late payments may result in delayed report delivery or suspension of ongoing services

5. Refund Policy

We stand behind the quality of our work:

--50% money-back guarantee: If our assessment finds zero security issues, you receive a 50% refund of the engagement fee
--Refund requests must be made within 7 days of report delivery
--Refunds do not apply if you provided incorrect, incomplete, or misleading information about the target scope
--Refunds do not apply if you restricted access to parts of the application that prevented thorough testing
--No refunds are issued for engagements that have been fully delivered as scoped

6. Confidentiality and NDA

Confidentiality is fundamental to our service:

--All engagements are covered by a Non-Disclosure Agreement (NDA)
--We will never disclose your identity, application details, or vulnerability findings to any third party without your written consent
--Our security researchers are individually bound by confidentiality obligations
--We do not use your specific vulnerability data for marketing, case studies, or public research without explicit permission
--Aggregated, anonymized statistics may be used to improve our methodologies

7. Data Handling and Deletion

We follow strict data handling protocols:

--All scan data, credentials, and vulnerability findings are permanently deleted within 30 days of report delivery
--Staging credentials and access tokens are revoked immediately after testing concludes
--Data is stored encrypted during the engagement period
--You may request immediate deletion of all data at any time
--See our Privacy Policy for complete details on data handling practices

8. Intellectual Property

Upon full payment, you receive a non-exclusive license to use the security assessment report for your internal business purposes. SableOffensive retains ownership of our testing methodologies, tools, and proprietary processes. You may not redistribute, resell, or publish our reports without written consent.

9. Termination

Either party may terminate an engagement with written notice. If you terminate before testing is complete, you are responsible for payment proportional to work completed. We reserve the right to terminate an engagement if we discover illegal activity or if you violate these Terms.

10. Governing Law and Dispute Resolution

These Terms are governed by applicable international commercial law. Any disputes arising from these Terms or our services will first be addressed through good-faith negotiation. If negotiation fails, disputes will be resolved through binding arbitration in accordance with internationally recognized arbitration procedures.

11. Contact

For questions about these Terms or our services, contact us at:

[email protected]

SableOffensive -- Based in LATAM, serving worldwide.