Community effort • Free main-domain report

Free Attack Surface Report for your main domain

We run a focused, external review of your primary public domain and deliver a concise PDF with low-hanging exposures, TLS/server posture, and quick wins. This is a voluntary community service to help reduce real-world harm from ransomware groups and other threat actors. We know security can be expensive—so the main-domain report is free. If you later want deeper coverage (multiple domains, servers, networks, or full pentesting), those paid services help us sustain and expand this initiative.

Request Free Report Check Ticket
Fast

Report in ~1–3 business days for your main domain.

Secure

Strict upload validation; we never store plaintext passwords.

Actionable

Clear findings, prioritized fixes, and optional follow-up support.

Why we offer this for free

We’re security practitioners who see how often organizations—especially small/medium teams—get hit by ransomware and opportunistic attacks. Our goal is simple: remove the easy wins for attackers before they become headlines. By offering a no-cost report for your main domain, we help raise the baseline without adding to your budget pressure.

When companies choose extended services (more domains, external infrastructure, deeper testing), those paid engagements cover the operating costs of this program and let us help more teams. It’s a practical, honest model: community impact first, sustainable services second.

Our pledge
  • Scope-respecting, externally focused report—not invasive testing.
  • Transparent methods and clear, fix-first recommendations.
  • Privacy-minded: only required data is collected; secure handling end-to-end.
Start free request View my ticket

How the free report works

  1. Submit company details and your official CR (PDF/JPG/PNG) on the Request page.
  2. We verify ownership and run a focused main-domain attack surface scan.
  3. We upload a concise PDF report with prioritized fixes to your ticket.
  4. Use your ticket ID + one-time password to access notes and download the PDF.

Need broader coverage (additional domains/servers/networks or a full pentest)? We’ll scope a paid engagement—those fees help fund this free initiative.

Open request page
Already submitted?

Use your ticket ID and password to view status, notes, and downloads.

Go to ticket
Trust, privacy, and scope

We operate with a defense-first mindset. Your data is used strictly to deliver the report and support your request. We don’t resell or share client information. Reviews are limited to externally visible assets under the main domain you provide, and we keep our methods transparent so your team can reproduce fixes.

Community pledge

Free attack surface report

Reduce real-world risk from ransomware groups and opportunistic attackers. We provide a focused, no-cost report for your primary public domain—paid add-ons help us sustain the program for everyone.

Request Free Report Check My Ticket