Security posture. No guesswork.

Upload a firewall config, get actionable findings with vendor-specific CLI remediation. Start free — no credit card required.

Trial

Free2 scans, no card

See your posture on real configs before you pay a cent.

  • 2 full scans
  • Up to 2 firewalls
  • Findings overview
  • Critical count (details on upgrade)
Start free

Starter

$49/mo

or $470/yr (~$39/mo, save ~20%)

For the admin keeping a handful of firewalls clean.

  • 10 scans / month
  • Up to 3 firewalls
  • Full findings + critical detail
  • Attack path map
  • 5 AI summaries / month
Start free
Most popular

Pro

$149/mo

or $1430/yr (~$119/mo, save ~20%)

For teams and MSPs running audits on a cadence.

  • Unlimited scans
  • Up to 10 firewalls
  • Evidence package export
  • Threat simulation
  • Scheduled re-scans
  • Unlimited AI summaries
Start free

Enterprise

Custom

Unlimited fleet, MSP white-label, SLA.

  • Unlimited firewalls
  • Unlimited seats
  • Bulk import + API
  • Custom integrations
  • Dedicated support / SLA
Talk to us

Every paid plan starts with the free trial — no credit card, no demo, no sales call. Upgrade in-app whenever you're ready. Managing customer fleets? MSP volume pricing →

Your config never touches our storage. Raw config files are parsed in memory and immediately discarded. We store only normalized findings — no raw configs, no IP addresses, no credentials. How it works →

Everything in the box

Full feature breakdown across all plans

FeatureTrialStarterProEnterprise
Scans per month2 total10UnlimitedUnlimited
Firewalls2310Unlimited
Full findings detailPartial
Critical finding details
AI executive summaries5/monthUnlimitedUnlimited
Attack path map
Evidence package
Threat simulation
Scheduled re-scans
Backup targets310UnlimitedUnlimited
Bulk firewall import
Custom integrations
Dedicated support / SLA

Frequently asked questions

What counts as a scan?
Each config file you upload and analyze is one scan. Re-scanning the same firewall after a config change is a new scan. Scans that fail due to a parse error do not count against your limit.
What vendors are supported?
Fortinet FortiGate, Palo Alto Networks, Sophos (XML and PostgreSQL dump), Check Point R80+, Check Point Gaia, and Cisco ASA. More vendors ship regularly.
Does CRWLR store my firewall config?
No. Your raw config file is parsed in memory and immediately discarded. We store only normalized analysis results — policy structure and finding details. No raw configs, no IP addresses, no credentials ever touch our database.
How does pricing work?
Simple flat plans, no per-firewall metering games. Start free with 2 scans (no credit card), then Starter or Pro — monthly or annual (annual saves ~20%). No demo or sales call required to start. MSPs managing many customer firewalls can email contact@crwlr.io for volume and white-label pricing.
What is the Evidence Package?
A signed export bundle (PDF report + CSV findings + SHA-256 hash manifest) suitable for compliance audits, insurance reviews, and pen test remediation tracking. Available on Pro and Enterprise.
What is Threat Simulation?
Run simulated attacker scenarios against your firewall posture — 10 built-in threat profiles (ransomware, lateral movement, data exfiltration, etc.) plus custom profiles. See exactly which policies a specific threat class would exploit. Pro and Enterprise only.
Do you offer volume discounts for MSPs?
Yes. If you manage multiple customer firewalls, contact us at contact@crwlr.io — we offer per-tenant pricing and white-label report options for managed security providers.
Is there a free trial?
Yes — the free trial gives you 2 full scans at no cost, enough to see the platform in action on real configs. For an extended evaluation, contact us.

Ready to audit your firewall?

2 free scans, no credit card. Takes about 60 seconds.

CRWLR Firewall Audit — Pricing