How can I create an account?

You need to first buy a package from here then an account will be created automatically for you. You will receive an activation email which you can use to access your account.

Can I have a free trial of the platform?

We do not provide free trials. However, there are 40 credits allocated each day for free use to each visitor. This will allow you to test the existing scanners in their basic form.

If you want to try the full capabilities of the platform, you can buy one of the packages, try the tools and ask for a full refund if you are not satisfied with the results.

Do I need an account for the free tools?

No, you don't need an account for the Light/Free version of the tools. Just go to the tool page and start scanning your systems for vulnerabilities. You have 40 free credits every day (renewed automatically every 24 hours).

What payment methods do you accept?

We accept Visa, MasterCard, Discover, American Express, and JCB, as well as check cards and ATM cards if they are issued by one of these major credit card companies. We also accept payment through PayPal and Amazon, as well as checks, money orders, and wire transfers.

All payments are processed via FastSpring, which is under contract with PentestTools SRL to process orders and collect payments worldwide.

How can I buy new credits for my existing account?

You just need to login to your account and go to the Pricing page. After you do the pruchase, the credits will be added to your current account automatically.

How many credits should I buy?

Each tool costs a number of credits, depending on its complexity and resource consumption. You should buy the credits package which is closest to your usage profile. A one-time security assessment can be done with Pro Basic while periodic scans and numerous targets are more suitable for Pro Advanced and Enterprise packages.

Is my data secure?

Data privacy is one of our utmost concerns. We keep your data encrypted into our database and we have multiple defense-in-depth mechanisms to protect it. Furthermore, the security is also strengthened by our hosting provider's measures. Please see Linode security.

Who has access to my data?

The results of your scans and all of your data from the platform belongs to you and we do not sell it or transmit it to any third party. You can also permanently delete all the scan results whenever you wish. Please see our Privacy Policy.

Where is my data located?

All of your data is stored in the London (United Kingdom) datacenter of our hosting provider. Read more about this datacenter here Linode London.

What are the source IP addresses of the scans?

You should whitelist the following FQDN: scanners.pentest-tools.com.
This hostname resolves to multiple IP addresses used by our scanning servers:

• 212.71.244.176
• 212.71.255.152
• 139.162.192.40
• 139.162.202.208
• 139.162.209.251
• 139.162.221.245
• 139.162.224.195
• 88.80.191.29
• 176.58.123.114
• 178.79.128.250
• 178.79.150.162
• 109.74.197.184

Will the test overload my server?

These are the testing details - which can also be used for the Amazon AWS Pentest Request Form:

• Peak bandwidth: 0.5 Gbps
• Peak requests per second: 50 RPS
• Peak Queries for DNS Zone Walking: N/A