Perimetr. Your attack surface, watched.
Continuous discovery and assessment of everything you expose to the internet — domains, services, certificates, cloud endpoints, the subdomain marketing spun up and forgot. Findings correlated against live exploit intelligence (KEV, EPSS, OSV) and signed by a human before they reach you.
$ perimetr watch --estate acme.example watching: 47 assets + api.acme.example :443 · tls ok + vpn.acme.example :1194 · expected + staging.acme.example :8080 · http ! new exposure — admin panel, no auth staging.acme.example:8080 assessed: reachable, exploitable — EPSS high handoff: queued for human review… ✓ signed by a security professional — delivered_
Admin panel exposed — no authentication
Internet-reachable management interface on staging.acme.example:8080. Exploitability correlated against live intel (KEV, EPSS) before any human minute is spent.
# Illustrative session — continuous discovery on the left; nothing reaches you until a human has validated and signed it on the right.
Live dashboard
Your estate, exposures, and trend over time. Always current.
Monthly signed report
Human-validated findings, severity-ranked, with fixes. Auditor-friendly evidence of continuous monitoring (maps to ISO 27001 A.8 / SOC 2 CC7).
New-exposure alerts
When something new opens up, you hear it from us first.
Retest on fix
Close a finding, we verify it’s actually closed.
# live example: our own edge — the threat feeds and blocked-attack map on this site run on the same continuous loop.
Scanner output is homework. Perimetr is an answer.
| A vulnerability scanner | Perimetr |
|---|---|
| Raw output, thousands of maybes | Human-signed findings that are real |
| Point-in-time snapshot | Continuous discovery and assessment |
| Per-scan pricing that punishes curiosity | Flat monthly band by external asset count |
Three bands. Published.
Banded by external asset count, nothing else. Full rate card — pentest and compliance included — on the pricing page.
# Annual prepay: two months free. Larger estate? Talk to us.
Authorized testing only.
Perimetr runs under a signed scope and rules of engagement. We monitor what you own and what you’ve authorized — nothing else.
Find out what’s exposed before someone else does.
A 30-minute scoping call. Walk out knowing your asset count, your Perimetr band, and whether anything is on fire — no pressure, no theatre.