Ultra13
Pricing

Pricing for the Context Firewall lifecycle.

Start with attack-surface recon, move into Context Firewall Monitor mode, enforce runtime policy for live agents, and add human-led teardowns when you need deeper proof.

FreeRecon
$0
free forever
1 agent

Solo builders kicking the tires

InspectionsReport-only
Scan probes1 scan / week
Deterministic-only scan · no runtime inspections
  • Automated agent attack-surface scan
  • Core families: prompt injection, indirect injection, jailbreaks
  • 1 scan / week
  • Shareable findings report
  • Community support
Start free
Most popular
ProMonitor
$99/mo
billed monthly
3 agents included
+$39 / extra agent

Early teams that need firewall visibility before enforcement

Inspections100k / mo
Scan probes2k / mo
Then metered overage, capped by your spend limit
  • Everything in Free, plus:
  • All 14 attack families
  • On-demand + weekly offensive teardowns
  • Exploit replay mapped to context-to-action paths
  • Context Firewall in Monitor mode
  • Generated source-to-sink policy pack
  • Email support
TeamEnforce
$499/mo
billed monthly
10 agents included
+$29 / extra agent

Teams ready to enforce the Context Firewall in production

Inspections2M / mo
Scan probes10k / mo
Then metered overage, capped by your spend limit
  • Everything in Pro, plus:
  • Context Firewall in Enforce mode
  • Block · redact · gate · quarantine at runtime
  • Continuous validation on every change (CI/CD)
  • Evidence pack + control matrix export
  • Slack, Jira & CI integrations
  • SSO + priority SLA
EnterpriseCustom
Custom
Unlimited agents

Regulated, multi-agent & MCP-heavy estates

InspectionsCommitted volume
Scan probesCustom
Usage-based above your commit
  • Everything in Team, plus:
  • Human-led offensive teardowns
  • Self-host / VPC firewall + tenant isolation
  • SAML/SCIM, RBAC & audit logs
  • SOC 2 + OWASP-LLM / MITRE ATLAS evidence
  • Continuous-validation retainer + SLA
  • Dedicated security engineer
Talk to sales

Prices in USD. Secure Stripe checkout is being configured for Pro and Team; today, “Get started” reserves your plan and our team activates it within a business day. Enterprise is scoped to your agent count, toolchain, and workflow risk.

Firewall Policy Reviewfrom $2,500

One-time, human-reviewed teardown of a single agent, converted into Context Firewall policy. Credits toward an annual plan.

Extra agents$29–$39 / mo

Add protected agents beyond your tier’s included count.

Compliance frameworksCustom

Extra mappings and evidence — SOC 2, ISO 27001, HIPAA — on Enterprise.

How pricing works

Three units, no surprises.

You’re metered on what actually drives risk and cost — agents, teardowns, and the runtime decisions the firewall makes — with hard caps and spend limits so a busy month never means a runaway bill.

01 / Per agent

One AI workflow or app you test or protect. Most teams start with 1–3 and add agents as they ship.

02 / Per scan run

One automated offensive teardown pass against an agent. Free runs weekly; paid runs on-demand and on every change.

03 / Per inspection

One runtime decision the firewall makes on a request. Pro includes 100k/mo in Monitor mode; Team 2M/mo in Enforce.

Metered overage

Past your included allowance, usage bills at a flat per-block rate — about $40–$50 per 100k inspections or per 1k probes.

Spend caps + alerts

Set a hard monthly budget. We alert at 80% and 100%, and never blow past it silently.

Fair-use ceiling

Heavy accounts move to usage-based or Enterprise — we never throttle a live security control to protect a flat price.

// inspections = runtime firewall decisions · probes = offensive teardown passes · annual billing saves ~20%

Compare plans

Every control, mapped to a plan.

The firewall capabilities and attack coverage that ship with each tier.

Compare plans
Free
Recon
Pro
Monitor
Team
Enforce
Enterprise
Custom
Offensive testing
Protected agents
1
3
10
Unlimited
Attack families
Core
All 38
All 38
All 38 + custom
OWASP ASI × MITRE ATLAS mapping
Teardown cadence
1 / week
On-demand + weekly
On every change
Continuous + human-led
Exploit replay
Remediation guidance
Human-led teardown
Context Firewall (runtime)
Firewall mode
Monitor
Enforce
Enforce + self-host
Context provenance & trust
Source-to-sink policy
Tool-call inspection
RAG result control
MCP / tool schema validation
Memory quarantine
Sensitive-data redaction
Approval gating
Validation & evidence
Continuous validation on change
Evidence pack / control matrix
Residual-risk register
Continuous Validation Badge
Usage & billing
Included inspections / mo
100k
2M
Committed
Included scan probes / mo
~500
2k
10k
Custom
Inspection overage
$50 / 100k
$40 / 100k
Per-million
Scan-probe overage
$50 / 1k
$40 / 1k
Custom
Spend cap & alerts
Fair-use ceiling
Weekly scan
3× included
3× included
Custom
Platform & support
Integrations
CI webhook
Slack · Jira · CI
+ SIEM
API / SDK / CLI
SSO
Google · Microsoft
SAML · SCIM
RBAC & audit logs
Compliance mapping
OWASP-LLM
SOC 2 + ATLAS
Data residency
US
USA / EU / UK
USA / EU / UK
+ self-host / VPC
Support
Community
Email
Priority SLA
Dedicated engineer
Not sure which plan?

Start by where you are.

Different buyers need a different first step. Pick the one that matches how close you are to deploying a real agent.

Cold visitor
Context Boundary Checklist
Get the Checklist
Problem-aware
Sample Firewall Proof Report
View Proof Report
High-intent founder / CTO
72-Hour Context Firewall Review
Get Firewall Review
Security buyer
Agentic Security Assessment
Request Assessment
Technical buyer
Context Firewall Architecture Review
Review Architecture
Existing prospect
Continuous Validation Pilot
Start Pilot
FAQ

Questions, answered.

One AI workflow or app you test or protect — a support copilot, a RAG assistant, an MCP-connected agent. You’re billed per agent plus usage, because that’s where the risk actually lives.

Start free, or book a Context Firewall Review.

One agent, one workflow. We’ll map the context boundary, replay exploit paths, and show where the firewall should enforce.

Start freeTalk to sales