With Cobalt’s Pentest as a Service (PtaaS) solution, you purchase credits in advance to easily redeem throughout the year for continuous pentesting. A Cobalt Credit is a standardized unit of work that represents 8 pentesting hours. Credits are sold in annual packages that include asset scoping, retesting, unlimited platform access, and more. Let’s start calculating! Fill out the calculator to get an estimate of how many Cobalt Credits you’ll need for your next pentest. Note: Credit minimums apply for new customers.
A flexible consumption model for faster, more efficient pentesting
Calculate credits needed for your next pentest
User Roles
Dynamic Pages
Please select an input:
Web Application
Mobile Application
API
External Network
Internal Network
Cloud Configuration Review
Estimated # of Cobalt Credits:
0
Web Application
Mobile Application
External Network
API
Internal Network
Cloud Configuration Review
Native Screens
User Roles
API Endpoints
User Roles
Active IPs
Active IPs
Unique Instances of Services Used
Accounts, Subs or Resource Groups
Select below
Modern Pentesting for All
Cobalt Pricing & Packaging
Cobalt offers a flexible, on-demand consumption model to meet the modern pentesting needs of all security and development teams. Explore Cobalt’s offerings below to determine the right package for your budget and testing goals.
Standard
$1,500/Credit
For teams in need of a speedy, annual pentest to meet a compliance need or client request.
Pentest Start Time Within 3 Business Days
What's included
/
/
What's included
/
/
For teams looking to build a structured pentest program to meet compliance needs and improve overall security.
$1,650/Credit
Premium
What's included
/
/
For teams looking to scale their pentest programs to meet compliance needs, increase testing frequency, and improve overall security.
Custom Pricing
Enterprise
Self-Service Platform with Google OAUTH 2.0 & 2FA
Best Practice Methodology + Pentest Coverage Checklist
Detailed Findings with Recommended Fixes
Free Retesting
Cobalt API
Real-time Collaboration with Pentesters via Slack and Platform
Includes:
Annual Strategic Planning
Onboarding for Teams
Customizable Reports
Native Integrations (Jira, GitHub)
Named Customer Success Manager (CSM)
Pentest Start Time Within 2 Business Days
INCLUDES EVERYTHING IN STANDARD, PLUS:
Up to 10% Annual Credit Rollover
Up to 10% Annual Credit Rollover
Dedicated Pentester Region
Quarterly Maturity Assessments
Quarterly Strategic Planning
Pentest Start Time Within 1 Business Day
INCLUDES EVERYTHING IN PREMIUM, PLUS:
Ready to Get Started?
Contact Us
Close
Ready to Get Started?
Your credit calculation is greater than 20.
To ensure credit calculations are accurate, we recommend discussing this scope with a Cobalt sales representative.
Contact Us
Close
Contact Us
A user role refers to a specific permission set within the asset.
User Roles:
A dynamic page is any unique URL that an end user can interact with.
Dynamic Pages:
Native Screens are the number of screen-sized user interfaces that an end-user can interact with.
Native Screens:
A user role refers to a specific permission set within the asset.
User Roles:
An API endpoint is any unique URL that can accept calls using methods such as GET, PUT, or POST.
API Endpoints:
A user role refers to a specific permission set within the asset.
User Roles:
An Active IP is an IP within a range which is assigned to a host.
Active IPs:
An Active IP is an IP within a range which is assigned to a host.
Active IPs:
A unique instance of a service is a Cloud Platform service in use that is unique from a configuration perspective.
Unique Instances of Services Used:
The Accounts, Subscriptions or Resource Groups field refers to the number of accounts where services and resources are deployed.
Accounts, Subscriptions or Resource Groups:
Contact Us today
Reset Calculator
Start your pentest in as little as 24 hours.
Calculate Results
ReCalculate Results
If you're interested in pentesting a more targeted scope, such as new release testing or delta testing, our Agile Pentesting offering may suit your needs. Reach out to our team today to explore your scoping options for these use cases.
Tool Tip:
Up to 10% Annual Credit Rollover
Dedicated Pentester Region
Quarterly Maturity Assessments
SAML-Based SSO
Quarterly Strategic Planning
Pentest Start Time Within 1 Business Day
INCLUDES EVERYTHING IN PREMIUM, PLUS:
Standard
Premium
Enterprise
recalculate Results
Start your pentest in as little as 24 hours.
Estimated # of Cobalt Credits:
0
Contact Us today
Close
Close
An Active IP is an IP within a range which is assigned to a host.
Active IPs:
Close
Close
Close
Close
Close
SAML-Based SSO