Free Scan
$0
All 6 categories · AWS · Automated · ~20 minutes
- Letter grade across 6 categories
- Severity counts (IAM / Network / Data / Logging / FinOps / Architecture)
- 8–12 representative findings
- Top FinOps wins surfaced
Cloud audit pricing. Pen test pricing.
Public pricing for AWS Cloud Audit and manual penetration testing. Free at the bottom, custom at the top, $499 in between. Stripe checkout, no discovery calls.
Public Pricing Stripe Checkout Same Audit Methodology at Every Tier
Compare Cloud Audit tiers.
Same audit methodology at every tier — depth and presentation differ. Each tier includes everything in the tiers below it.
Cloud Audit
Automated tiers: AWS only. Manual tiers (Manual Cloud Audit, Implementation): AWS, GCP, and Azure.
Full Audit Report
$499
All 6 categories · AWS · Automated · ~40 minutes
- All findings across 6 categories with evidence
- CVSS 3.1 scoring
- FinOps with $ amounts
- CIS AWS Foundations Benchmark v1.5 mapping per finding
Buy Now →
Or upgrade from a free scan results page.
Manual Cloud Audit
From $4,999
All 8 CloudCheck 360° categories · AWS / GCP / Azure · Human-led · Scoping call
- Senior engineer review across all 8 CloudCheck 360° categories
- FinOps with prioritized $ amounts and ROI
- Custom remediation roadmap
- 60-minute walkthrough call
- AWS / GCP / Azure
Implementation
Custom
Findings remediation · Scoping call required
- IAM cleanup, encryption rollouts, network segmentation
- Logging + monitoring buildout
- Retest after fixes are live
Same automated audit pipeline runs at $0 and $499 tiers. Difference is depth of presentation: free shows the picture, paid unlocks the full inventory with evidence. Manual tiers (Pen Test / Manual Cloud Audit) add credentialed-engineer depth that automation can’t reach.
Pen Test sub-tiers
Three sub-tiers within Pen Test.
Manual penetration testing scales by scope. Essential covers a single asset (most SaaS startups start here). Complete covers up to 3 assets and adds compliance framework mapping. Custom handles internal network, red team, recurring engagements, and complex scope.
Essential
$3,499
1 asset · Web / Mobile / API / Network
- Authenticated + unauthenticated testing
- OWASP Top 10 + business-logic review
- Signed PDF report with CVSS scoring
- 60-day retest included
- 15-day SLA from scope-lock
Complete
$5,499
Up to 3 assets · Any combination
- Everything in Essential, applied to up to 3 assets
- 30-minute walkthrough call with the tester
- Priority scheduling
- 60-day retest included
- 30-day SLA from scope-lock
Custom
Talk to us
Internal network · Red team · Recurring · Complex scope
- Everything in Complete
- Internal network testing
- Red team / social engineering
- Recurring engagements
- Multi-quarter retest schedule
Each Pen Test engagement signed by a credentialed tester. 40–80 page report with executive summary, findings inventory, evidence, CVSS scoring, and remediation guidance.
Standards
Same delivery posture across every tier.
Secure link to your report for automated tiers. Signed PDF for Pen Test and Manual Cloud Audit. 60-day retest included with Pen Test. Stripe checkout for free, $499, and Pen Test tiers. Manual tiers (Manual Cloud Audit, Implementation) require a 30-minute scoping call before engagement begins.
Methodology
- OWASP Web Security Testing Guide (Pen Test)
- OWASP Mobile MASVS (Pen Test)
- OWASP API Security Top 10 (Pen Test)
- CIS AWS Foundations Benchmark v1.5 (Cloud Audit)
- AWS Well-Architected Security Pillar (Cloud Audit)
Deliverable
- Secure link to report for automated tiers
- Live results page (never expires)
- Severity scoring per finding
- CVSS 3.1 scoring at $499+ tiers
- CIS AWS Foundations Benchmark v1.5 mapping at $499+ Cloud Audit tiers
- Signed PDF for Pen Test + Manual Cloud Audit
Process
- Stripe checkout — no discovery calls on automated tiers
- Manual tiers: 30-minute scoping call before engagement begins
- 15-day SLA on Pen Test Essential, 30-day on Complete
- 60-day retest included on Pen Test
- Read-only AWS access via CloudFormation
- No production traffic, no customer data, no writes
Common questions
Quick answers.
Industry surveys cite $5,000 to $30,000 as the typical range, with $15,000 as a common midpoint. Cloud Upload’s Essential tier at $3,499 sits below this floor — productized engagement, not reduced testing depth. Complete tier at $5,499 covers up to 3 assets in any combination. Custom pricing for internal network, red team, or recurring engagements. All tiers manual, all signed by credentialed engineers, 15-day SLA (Essential) or 30-day SLA (Complete) from scope-lock.
Audits start at $0 (Free Scan) and scale up: $499 for Full Audit Report (automated, all findings, evidence, CVSS scoring), $3,499+ for Manual Pen Test (credentialed engineers, web/mobile/API/network), $4,999+ for Manual Cloud Audit (senior engineer review with custom remediation roadmap), Custom for Implementation engagements. Pen Test has 3 sub-tiers: Essential $3,499, Complete $5,499, Custom. All automated tiers ($0 / $499) accept Stripe checkout with no discovery call. Manual tiers add a 30-minute scoping call before engagement begins.
The $499 Full Audit Report includes everything from the Free Scan plus: all findings with severity and evidence, CVSS 3.1 scoring per finding, remediation guidance per finding, FinOps findings with calculated dollar amounts (Cloud Audit only), and CIS AWS Foundations Benchmark v1.5 mapping per finding. Same automated audit pipeline runs at both tiers — depth and presentation differ.
Audits identify findings; Implementation fixes them. Choose Implementation when you have an audit report (ours or another vendor’s) and need engineer time to remediate prioritized findings — IAM cleanup, encryption rollouts, network segmentation, logging buildout — with retest verification after fixes are live. Implementation engagements are scoped per project; book a scoping call to discuss scope and timeline.
Still have questions? Talk to the Team →