Start free. Every tier includes SAGE AI enrichment on all 350,000+ CVEs. Upgrade when you need alerts, environments, and compliance reports.
| Feature | Free | Standard $199/mo |
Professional $499/mo |
Enterprise $1,499/mo |
|---|---|---|---|---|
| Search & Discovery | ||||
| CVE search results | 10/page | Unlimited | Unlimited | Unlimited |
| CVSS v3/v4 + KEV + EPSS | ✓ | ✓ | ✓ | ✓ |
| Patch URL + PSIRT links | ✓ | ✓ | ✓ | ✓ |
| Filter by KEV, CVSS, year, patch, exploit | - | ✓ | ✓ | ✓ |
| Exploit + PoC availability flag | - | - | ✓ | ✓ |
| MITRE ATT&CK technique mapping | - | - | ✓ | ✓ |
| SAGE AI Enrichment | ||||
| Executive summary | Preview | Full | Full | Full |
| Attack vector + component breakdown | - | ✓ | ✓ | ✓ |
| Exploitation likelihood score | - | ✓ | ✓ | ✓ |
| Virtual patch - Suricata rule | - | - | ✓ | ✓ |
| Virtual patch - Snort rule | - | - | ✓ | ✓ |
| SHA-512 audit hash per CVE | ✓ | ✓ | ✓ | ✓ |
| Watchlist (Vendor / Product / Protocol / CWE) | ||||
| Watchlist items | 0 | 10 | Unlimited | Unlimited |
| Alert on: new CVE, KEV, patch, exploit | - | ✓ | ✓ | ✓ |
| CVSS + EPSS + KEV threshold filters | - | Partial | Full | Full |
| Custom IF/THEN alert rules | - | - | - | ✓ |
| Environment Monitoring | ||||
| Environments | 0 | 1 | 10 | 25 |
| Assets (total per org) | - | 50 | 1,000 | 5,000 |
| CSV asset upload | - | ✓ | ✓ | ✓ |
| Environment risk score | - | ✓ | ✓ | ✓ |
| Week-over-week diff report | - | - | ✓ | ✓ |
| Sub-environments / zones | - | - | - | ✓ |
| Alert Delivery | ||||
| Email alerts | - | 15 min | 15 min | 15 min |
| Weekly KEV digest (Monday AM) | - | ✓ | ✓ | ✓ |
| Slack + Teams + generic webhook | - | - | ✓ | ✓ |
| PagerDuty + OpsGenie | - | - | - | ✓ |
| Alert suppression (maintenance windows) | - | - | - | ✓ |
| Reports (PDF + CSV) | ||||
| Single CVE PDF export | - | ✓ | ✓ | ✓ |
| Environment exposure report | - | ✓ | ✓ | ✓ |
| Patch gap report (KEV, no patch) | - | - | ✓ | ✓ |
| Executive summary (board-level) | - | - | ✓ | ✓ |
| NERC-CIP compliance report | - | - | - | ✓ |
| IEC 62443 zone exposure report | - | - | - | ✓ |
| White-label reports (your logo) | - | - | ✓ | ✓ |
| Scheduled delivery (email) | - | - | ✓ | ✓ |
| PowerPoint board deck export | - | - | - | ✓ |
| Regulatory audit evidence bundle | - | - | - | ✓ |
| Ticketing & CVE Sharing | ||||
| Public share link + email/Slack share | ✓ | ✓ | ✓ | ✓ |
| Jira ticket (one-click, pre-filled) | - | - | ✓ | ✓ |
| ServiceNow incident/change request | - | - | ✓ | ✓ |
| GitHub Issues + Linear | - | - | ✓ | ✓ |
| Auto-ticket on KEV in environment | - | - | ✓ | ✓ |
| Bulk CSV export | - | ✓ | ✓ | ✓ |
| Scheduled S3/SFTP export | - | - | - | ✓ |
| SIEM & Platform Integrations | ||||
| Splunk add-on + Elastic SIEM rules | - | - | ✓ | ✓ |
| Microsoft Sentinel workbook | - | - | ✓ | ✓ |
| AWS Security Hub + Datadog Events | - | - | - | ✓ |
| Palo Alto XSOAR + FortiSOAR playbooks | - | - | - | ✓ |
| IBM QRadar app | - | - | - | ✓ |
| API Access | ||||
| API calls / month | 0 | 0 | 1,000 | Unlimited |
| Bulk CVE export per call | - | - | - | Unlimited |
| Real-time webhook stream | - | - | - | ✓ |
| Historical API (1999-present) | - | - | - | ✓ |
| GraphQL + Python/JS/Go SDKs | - | - | Beta | ✓ |
| Weekly JSONL full DB snapshot | - | - | - | ✓ |
| Team & Security | ||||
| Team members | 1 | 2 | 5 | 25 |
| Role-based access | - | - | ✓ | ✓ |
| SSO - Okta, Azure AD, Google | - | - | - | ✓ |
| MFA enforcement + IP allowlisting | - | - | - | ✓ |
| Full audit log export | - | - | ✓ | ✓ |
| 99.9% uptime SLA | - | ✓ | ✓ | ✓ |
For security companies managing multiple clients.
Let BreachSpider run your ICS/OT vulnerability monitoring for you. We handle the platform, triage, alerts, and reporting. You get the results.
All plans: TLS encryption - AES-256 at rest - SHA-512 audit hashes - GDPR-compliant - Cloudflare DDoS protection - No ads - No data selling