Security posture. No guesswork.
Upload a firewall config, get actionable findings with vendor-specific CLI remediation. Start free — no credit card required.
Trial
See your posture on real configs before you pay a cent.
- 2 full scans
- Up to 2 firewalls
- Findings overview
- Critical count (details on upgrade)
Starter
or $470/yr (~$39/mo, save ~20%)
For the admin keeping a handful of firewalls clean.
- 10 scans / month
- Up to 3 firewalls
- Full findings + critical detail
- Attack path map
- 5 AI summaries / month
Pro
or $1430/yr (~$119/mo, save ~20%)
For teams and MSPs running audits on a cadence.
- Unlimited scans
- Up to 10 firewalls
- Evidence package export
- Threat simulation
- Scheduled re-scans
- Unlimited AI summaries
Enterprise
Unlimited fleet, MSP white-label, SLA.
- Unlimited firewalls
- Unlimited seats
- Bulk import + API
- Custom integrations
- Dedicated support / SLA
Every paid plan starts with the free trial — no credit card, no demo, no sales call. Upgrade in-app whenever you're ready. Managing customer fleets? MSP volume pricing →
Your config never touches our storage. Raw config files are parsed in memory and immediately discarded. We store only normalized findings — no raw configs, no IP addresses, no credentials. How it works →
Everything in the box
Full feature breakdown across all plans
| Feature | Trial | Starter | Pro | Enterprise |
|---|---|---|---|---|
| Scans per month | 2 total | 10 | Unlimited | Unlimited |
| Firewalls | 2 | 3 | 10 | Unlimited |
| Full findings detail | Partial | ✓ | ✓ | ✓ |
| Critical finding details | — | ✓ | ✓ | ✓ |
| AI executive summaries | — | 5/month | Unlimited | Unlimited |
| Attack path map | — | ✓ | ✓ | ✓ |
| Evidence package | — | — | ✓ | ✓ |
| Threat simulation | — | — | ✓ | ✓ |
| Scheduled re-scans | — | — | ✓ | ✓ |
| Backup targets | 3 | 10 | Unlimited | Unlimited |
| Bulk firewall import | — | — | ✓ | ✓ |
| Custom integrations | — | — | — | ✓ |
| Dedicated support / SLA | — | — | — | ✓ |
Frequently asked questions
- What counts as a scan?
- Each config file you upload and analyze is one scan. Re-scanning the same firewall after a config change is a new scan. Scans that fail due to a parse error do not count against your limit.
- What vendors are supported?
- Fortinet FortiGate, Palo Alto Networks, Sophos (XML and PostgreSQL dump), Check Point R80+, Check Point Gaia, and Cisco ASA. More vendors ship regularly.
- Does CRWLR store my firewall config?
- No. Your raw config file is parsed in memory and immediately discarded. We store only normalized analysis results — policy structure and finding details. No raw configs, no IP addresses, no credentials ever touch our database.
- How does pricing work?
- Simple flat plans, no per-firewall metering games. Start free with 2 scans (no credit card), then Starter or Pro — monthly or annual (annual saves ~20%). No demo or sales call required to start. MSPs managing many customer firewalls can email contact@crwlr.io for volume and white-label pricing.
- What is the Evidence Package?
- A signed export bundle (PDF report + CSV findings + SHA-256 hash manifest) suitable for compliance audits, insurance reviews, and pen test remediation tracking. Available on Pro and Enterprise.
- What is Threat Simulation?
- Run simulated attacker scenarios against your firewall posture — 10 built-in threat profiles (ransomware, lateral movement, data exfiltration, etc.) plus custom profiles. See exactly which policies a specific threat class would exploit. Pro and Enterprise only.
- Do you offer volume discounts for MSPs?
- Yes. If you manage multiple customer firewalls, contact us at contact@crwlr.io — we offer per-tenant pricing and white-label report options for managed security providers.
- Is there a free trial?
- Yes — the free trial gives you 2 full scans at no cost, enough to see the platform in action on real configs. For an extended evaluation, contact us.
Ready to audit your firewall?
2 free scans, no credit card. Takes about 60 seconds.