Authorized vulnerability scanning for your web assets. Ownership verified before every scan. Findings prioritized by exploitability, not raw CVSS. API-first, EU-hosted (Frankfurt), built to support your GDPR obligations.
Multi-factor ownership verification before any packet leaves our worker: DNS TXT record, HTTP /.well-known challenge, or manually-approved CIDR. We refuse third-party targets.
Curated nuclei templates (CVE, exposure, misconfiguration) run under sandboxed workers with post-DNS IP re-validation. Ranked by exploitability + remediation confidence, not raw CVSS.
Every action is an endpoint: trigger scans from CI, fetch JSON findings, subscribe to webhooks. Immutable audit log keeps the ownership proof for 12 months.
Prices in EUR. EU customers: reverse-charge VAT on valid VIES ID. Extra-EU: out-of-scope IVA. Stripe subscription. 14-day cancellation inside the current billing cycle.
Public status: status-scanner.eleion.io · Abuse: abuse@eleion.io · Security: security@eleion.io
First 10 invited tenants get 30 days free on Starter tier. We reply within 48 hours with onboarding instructions and your invite code.