Pick your tier. Buy your units.
Each attack unit is a fully configured test: nodes, observers, duration, regions, and attack capabilities are determined by the tier. Purchase the units you need, then launch attacks on your schedule.
Choose a tier
Select the tier that matches the scale and sophistication you need.
Purchase units
Buy as many attack units as your annual testing plan requires.
Schedule and launch
Schedule tests around your change windows. Each attack consumes one unit.
Get your results
Per-region metrics, compliance reports, and remediation guidance.
Attack Unit Tiers
Every tier defines your infrastructure scale and testing capabilities.
The tier sets your infrastructure envelope — attack nodes, observers, duration, regions, and which attack vectors are available. You choose your target, vector, and regions when scheduling each test.
Standard
Compliance validation
Attack capabilities
Advanced
Full capabilities, dual region
Attack capabilities
Professional
High-volume, tri-region
Attack capabilities
Enterprise
Extended, global simulation
Attack capabilities
Volume discounts available when purchasing multiple units. Need a configuration beyond these tiers? Contact us to discuss custom options.
Every Unit Includes
Full platform access at every tier.
Target validation
DNS, HTTP, WHOIS, and manual LOA verification to confirm you own what you test.
Real-time dashboard
Per-region attack and observer metrics with live graphs during every test.
Compliance reports
Automated mapping to PCI DSS, NIST CSF, ISO 27001, DORA, and other frameworks.
Kill switch
Instant stop on every test. Circuit breakers auto-halt if your target goes unresponsive.
API and webhooks
Integrate test scheduling and results into your existing workflows and CI/CD pipelines.
Audit trail
Complete log of every action, test, and result for accountability and compliance evidence.
FAQ
Common questions about pricing.
What is an attack unit?
An attack unit is one attack execution within the maximums and capabilities defined by your tier. The tier sets the infrastructure envelope — attack nodes, observers, duration, regions, and max volume. When you launch an attack, you choose the specific vector, target regions, and (for Advanced and above) a ramp schedule. Each launch consumes one unit from your balance.
What is the difference between a test and an attack?
A test is a scheduled maintenance window where you run one or more attacks against your target. Each individual attack within a test consumes one attack unit. For example, you might schedule a test during a change window and run three separate attacks to evaluate different vectors or configurations.
Can I mix tiers?
Yes. You can purchase units at different tiers and hold them simultaneously. Your dashboard shows your remaining balance for each tier. When you launch an attack, you select which tier to use.
Can I customize settings within a tier?
The tier fixes your infrastructure maximums — node count, observer count, duration, region count, and max volume. Within those bounds, you make configuration decisions at launch time: which attack vector to use, which regions to deploy to, and (for Advanced, Professional, and Enterprise tiers) a ramp schedule that escalates traffic across up to three windows. The infrastructure scales to match the tier automatically.
What is ramp scheduling?
Ramp scheduling splits your attack duration into up to three windows with escalating traffic rates. For example, a 30-minute Advanced attack could ramp as: 0–10 minutes at moderate volume, 10–20 minutes at higher volume, and 20–30 minutes at full capacity. This lets you observe how your defenses respond to gradually increasing load rather than an instant spike. Ramp scheduling is available on Advanced, Professional, and Enterprise tiers.
What is L3/4 mixed pattern?
Mixed pattern attacks automatically cycle through multiple Layer 3 and Layer 4 vectors (SYN flood, UDP flood, ICMP flood) during a single attack, either in a fixed sequence or a randomized pattern. This tests whether your mitigation handles vector transitions, which is where many defenses have gaps.
What is multi-layer?
Multi-layer attacks run Layer 3/4 (volumetric) and Layer 7 (application) traffic simultaneously. This simulates realistic attack scenarios where a volumetric flood is combined with targeted HTTP floods, slowloris connections, or API stress to overwhelm both network and application defenses at the same time.
How does multi-region work?
Multi-region tiers distribute attack nodes and observers across the specified number of AWS regions. Each region runs an independent cell of attack and observer infrastructure, and your dashboard displays per-region metrics so you can see exactly how your target responds to traffic from each geographic origin.
Do units expire?
Yes. Purchased attack units are valid for 12 months from the date of purchase. Unused units expire at the end of that period.
What payment methods do you accept?
Credit card and ACH for unit purchases. All payments are processed securely through Stripe. For managed services and custom engagements, contact us to discuss invoicing options.
Not sure which tier fits?
Tell us about your infrastructure and testing goals. We'll recommend the right tier and help you scope your first test. Need expert-led testing? We offer managed services too.