Public pricing. No devis surprise.
Most consulting firms hide their fee until they have your contract details. We publish ours. The discovery call is for scoping, not for haggling.
The same method, sized to the decision.
| Discovery Brief | Board-Ready Audit | Continuous Assurance | |
|---|---|---|---|
| Price | €5,000 | From €25,000 | From €50,000 / year |
| Duration | 3 business days | 5 business days + retest | 12 months |
| Surface scoped | 1 root domain + 1 namespace | Full external surface | Full external surface |
| Findings documented | Up to 1 critical | Up to 15 | Up to 15 + quarterly deltas |
| Executive memo | Yes, 2 pages | Yes | Yes + quarterly |
| Evidence pack | Yes, 1 finding | Yes, up to 15 | Yes, up to 15 + deltas |
| Business impact analysis | Yes, concise, 1 page | Yes, full | Yes, full |
| Remediation runbook | Yes | Yes | Yes |
| AI-Alliance challenge log | Yes | Yes | Yes |
| Restitution call | No | Yes, 60 min | Yes |
| Retest | No | Yes within 14 days | Yes quarterly |
| Signed attestation | No | Yes | Yes |
| Continuous SaaS monitoring | No | No | Yes, bleedwatch.com Shield-tier |
| Incident-response window | No | No | Yes, 4h on-demand |
Discovery Brief
- Price
- €5,000
- Duration
- 3 business days
- Surface scoped
- 1 root domain + 1 namespace
- Findings documented
- Up to 1 critical
- Executive memo
- Yes, 2 pages
- Evidence pack
- Yes, 1 finding
- Business impact analysis
- Yes, concise, 1 page
- Remediation runbook
- Yes
- AI-Alliance challenge log
- Yes
- Restitution call
- No
- Retest
- No
- Signed attestation
- No
- Continuous SaaS monitoring
- No
- Incident-response window
- No
Board-Ready Audit
- Price
- From €25,000
- Duration
- 5 business days + retest
- Surface scoped
- Full external surface
- Findings documented
- Up to 15
- Executive memo
- Yes
- Evidence pack
- Yes, up to 15
- Business impact analysis
- Yes, full
- Remediation runbook
- Yes
- AI-Alliance challenge log
- Yes
- Restitution call
- Yes, 60 min
- Retest
- Yes within 14 days
- Signed attestation
- Yes
- Continuous SaaS monitoring
- No
- Incident-response window
- No
Continuous Assurance
- Price
- From €50,000 / year
- Duration
- 12 months
- Surface scoped
- Full external surface
- Findings documented
- Up to 15 + quarterly deltas
- Executive memo
- Yes + quarterly
- Evidence pack
- Yes, up to 15 + deltas
- Business impact analysis
- Yes, full
- Remediation runbook
- Yes
- AI-Alliance challenge log
- Yes
- Restitution call
- Yes
- Retest
- Yes quarterly
- Signed attestation
- Yes
- Continuous SaaS monitoring
- Yes, bleedwatch.com Shield-tier
- Incident-response window
- Yes, 4h on-demand
Simple commercial terms.
Discovery Brief
Flat €5,000. Payable on completion. Designed for a small, bounded surface and one fully documented critical finding or a clean executive memo.
Board-Ready Audit
50% on contract signature and 50% on report delivery. Typical engagements land between €25,000 and €40,000 depending on surface complexity.
Continuous Assurance
Annual engagement billed quarterly. First quarter due on contract signature. Renewal is opt-in; there is no hidden subscription auto-renewal.
Payment rails
All prices are in EUR and exclude VAT. Wire transfer is preferred. Stripe Invoice is available when procurement needs card or invoice workflow.
The pricing model is part of the trust model.
Labs pricing is public because the work is narrow. We are not selling open-ended access to a consulting bench. We are selling a scoped assurance artifact with a defined method.
Why publish prices?
Because serious buyers need budget signal before involving legal and procurement. Hidden pricing wastes time on both sides.
Why from-pricing?
Surface size changes collection time, evidence volume, and retest complexity. The discovery call turns the published anchor into a fixed quote.
Why value-based fees?
The deliverable prices diagnosis, proof, judgment, liability transfer, and validated closure, not the number of remediation hours.
Why no checkout?
Engagements require authorization, scope, confidentiality, and invoicing. Payment happens by wire or Stripe Invoice after contract signature.
What changes a fixed quote.
The discovery call turns the table into a fixed quote. These are the inputs that move scope and complexity. None require production access.
01
Root domains and known adjacent domains.
02
GitHub organizations and public repository count.
03
Docker namespaces and approximate public image volume.
04
NPM scopes or package namespaces.
05
Known public CI artifact locations.
06
Whether sample deliverables are required for procurement.
07
Expected legal review timeline.
08
Need for purchase-order language or vendor onboarding.
09
Whether the buyer needs a redacted sample report first.
10
Whether billing must split across procurement periods.
11
Whether continuous monitoring starts immediately after retest.
12
Whether legal needs custom confidentiality language.
13
Board, insurance, fundraise, or customer due-diligence deadline.
14
Whether retest and signed attestation are required.
What if we find nothing?
We do not invent findings to justify a fee. The report will say the scoped public surface came back clean, explain what was reviewed, and state the evidentiary limits of that conclusion.
A clean engagement is a real outcome. It means the scoped public surface did not produce level-4 or level-5 findings during the engagement window.
Discovery receives a 30% courtesy refund on clean outcome. Board-Ready receives a 20% courtesy refund on clean outcome.
Continuous is not refundable on a clean first quarter because monitoring and quarterly delta work still run after the initial audit.
Refunds do not apply when scope information was materially incomplete, authorization was withdrawn, or the client prevents delivery.
VALUE
You are not paying for the two-hour fix.
You are paying for the six months it would have taken your team to find it — or never. The fact that the fix takes two hours is the proof we found exactly the right thing.
You are paying for diagnosis, proof, judgment, liability transfer, and validated closure.
Medical diagnostics, incident response, and structural engineering price the scarce judgment.
The deliverable proves value before the appendix reaches the exact configuration change.
Pick a tier. Or let us help.
A clean engagement is a real outcome. We refund 30% on Discovery / 20% on Board-Ready as a courtesy.
Book a discovery call