HAXUNIT

Know every asset.Find every weakness.Act instantly.

HaxUnit continuously maps your external attack surface, performs vulnerability assessment, and converts risk signals into action.

Platform coverage

By the numbers.

10K+Vulnerability scans run
75K+Assets discovered
5K+Findings prioritized

How it works

From your domain to done.

Add a domain. We handle everything else — automatically, continuously.

Asset group · My Company

    01

    Add your domains

    Create an asset group and drop in one or more domains. That single group is your entire scope — no config files, no agents, no installs.

    • blog.haxunit.com

      Discovered 1m ago

    • admin.haxunit.io

      Discovered 2 days ago

    • analytics.haxunit.com

      Discovered 5m ago

    • app.haxunit.ai

      Discovered 1m ago

    • api.haxunit.com

      Discovered 12m ago

    • staging.haxunit.com

      Discovered 3h ago

    • auth.haxunit.io

      Discovered 4 days ago

    • docs.haxunit.com

      Discovered 22m ago

    • cdn.haxunit.ai

      Discovered 8m ago

    • support.haxunit.com

      Discovered 6h ago

    • mail.haxunit.com

      Discovered 1 day ago

    • status.haxunit.io

      Discovered 30m ago

    • dev.haxunit.com

      Discovered 18m ago

    • cdn-eu.haxunit.com

      Discovered 2h ago

    • blog.haxunit.com

      Discovered 1m ago

    • admin.haxunit.io

      Discovered 2 days ago

    • analytics.haxunit.com

      Discovered 5m ago

    • app.haxunit.ai

      Discovered 1m ago

    • api.haxunit.com

      Discovered 12m ago

    • staging.haxunit.com

      Discovered 3h ago

    • auth.haxunit.io

      Discovered 4 days ago

    • docs.haxunit.com

      Discovered 22m ago

    • cdn.haxunit.ai

      Discovered 8m ago

    • support.haxunit.com

      Discovered 6h ago

    • mail.haxunit.com

      Discovered 1 day ago

    • status.haxunit.io

      Discovered 30m ago

    • dev.haxunit.com

      Discovered 18m ago

    • cdn-eu.haxunit.com

      Discovered 2h ago
    02

    Your attack surface is mapped

    Every subdomain, IP, open port, and technology across your entire footprint — discovered and available to browse immediately as results come in.

    Vulnerability scanning in progress..

    • Redis < 8.2.1 lua script

      CVE-2025-46817

      Critical
      Found atredis.haxunit.com
      Last seen5m ago

    • Redis Lua Parser < 8.2.2

      CVE-2025-46631

      High
      Found atredis.haxunit.com
      Last seen4m ago

    • Redis Server - Unauthenticated

      Password not required

      High
      Found atredis.haxunit.com
      Last seen2m ago

    • Public metrics endpoint exposed

      /metrics publicly reachable

      Low
      Found atredis.haxunit.com
      Last seen1m ago

    • Redis < 8.2.1 lua script

      CVE-2025-46817

      Critical
      Found atredis.haxunit.com
      Last seen5m ago

    • Redis Lua Parser < 8.2.2

      CVE-2025-46631

      High
      Found atredis.haxunit.com
      Last seen4m ago
    03

    Vulnerabilities are scanned

    An automated scan runs across every discovered asset. For large attack surfaces, scanning is distributed across multiple servers simultaneously.

    Finding

    Redis Server - Unauthenticated

    High

    redis.haxunit.com · Reproduction steps attached

    Fix ready
    Retesting
    Passed

    Ready to verify

    Latest scan confirms the fix
    04

    Review, fix, and verify

    Every finding comes with reproduction steps, evidence, and a one-click retest after you've fixed it. Get notified via email or Slack the moment something crosses your severity threshold.

    Pricing

    Simple Plans. No Surprises.

    Select the option that fits your needs and start today.

    Free Scan

    $0/one-time

    Test HaxUnit on a domain you own and get a focused vulnerability report in minutes.

    • One-time vulnerability scan
    • Up to 100 Assets
    • One domain
    • Focused vulnerability report
    • No credit card required
    Start free scan

    Pro

    $99/monthly

    Direct paid subscription for teams ready to skip the trial.

    • Up to 200 Assets
    • 1 Asset Group, 5 Domains per Group
    • Advanced Vulnerability Scanning
    • Priority Support
    • Custom Reporting
    Subscribe to Pro

    Enterprise

    Custom

    Perfect for large organizations with advanced needs.

    • Everything in Pro and more
    • Dedicated support
    • Custom integrations
    • On-premise deployment
    • API access
    Contact us

    FAQs

    We’ve Got the Answers

    Quick answers to your questions.

    The free scan includes a one-time vulnerability scan for one domain, up to 100 assets, and a focused report. No credit card is required.

    Create an account, add a domain you own, and HaxUnit starts mapping exposed assets and checking for vulnerabilities. Results are shown in your dashboard as the scan completes.

    The free scan is a one-time check. Pro adds continuous discovery, recurring vulnerability scanning, up to 200 assets, deeper prioritization, and ongoing remediation workflows.

    An asset is an externally discoverable item such as a domain, subdomain or IP address that HaxUnit tracks during discovery and scanning.

    No. HaxUnit scans externally reachable assets from the domain scope you provide, so there are no agents, code changes, or config files required to get started.

    Yes. HaxUnit keeps your scan results and asset telemetry isolated to your account and uses access controls and secure processing practices to protect your data.

    No. You should only scan domains and assets you own or are explicitly authorized to test. HaxUnit is intended for legitimate security monitoring of your own attack surface.

    See HaxUnit in action

    Start monitoring your attack surface with HaxUnit.

    Sign Up