Product · Continuous Protection
Weekly scans. Persistent alerts. Zero check-ins.
Continuous Protection runs a deep scan every week on apps you've shipped and tracks every finding until you fix it. New issues show up in your inbox; old ones stay tracked across scans.
- Weekly deep scans (all premium scanners)
- Persistent alerts that survive scan-to-scan
- Email security (SPF, DMARC) + breach monitoring (HIBP)
- 2 Deep Scan credits every month
- $29 / month per domain
RLS removed from `bookings` table
Detected 14 hours ago
Mailchimp API key in JS bundle
Detected 2 days ago
CSP header added
Resolved yesterday
How it works
3 steps to your first result.
- 1
Add your domain
Subscribe, point us at the URL. First scan kicks off immediately.
- 2
Weekly scans, automatic
Every week we re-scan and reconcile findings against the prior run.
- 3
Get pinged on new issues
New critical or high alerts hit your inbox. Resolved issues stay closed until they reappear.
What you get
Weekly deep scans
Full premium scan every week — headers, RLS, secrets, auth, IDOR, crawling.
Persistent alerts
Alerts track across scans. Mark fixed, suppress noise, reopen automatically if detected again.
Email security monitoring
Watches SPF, DKIM, DMARC records for your domain. Flags spoof-friendly configs.
Breach monitoring
Cross-checks your registered emails against Have I Been Pwned, flags new exposures.
Per-scan history
Every alert has a full detection history — when first seen, when resolved, when reopened.
One dashboard per domain
Group multiple domains under one account. Each gets its own alert feed and scan log.
Frequently asked
- What counts as a 'deep' scan here?
- Every Continuous Protection scan runs the full premium scanner suite — same as a $19 one-off Deep Scan, but every week, with cross-scan reconciliation. Plus you get 2 Deep Scan credits a month to run on any app.
- What happens to old alerts when I fix something?
- Mark the alert as resolved. If the same issue reappears on a later scan, it auto-reopens with full history intact. You'll know immediately if a fix regressed.
- Can I monitor multiple domains?
- Yes — each domain is its own subscription. You manage them all from the same dashboard.
- How is this different from a one-off scan?
- A one-off is a snapshot. Continuous Protection is a feed. The value is the diff — knowing what changed since last week, before customers notice.