What does NullSquare actually do?

NullSquare runs continuous security testing across websites, APIs, cloud assets, and private environments. It maps vulnerabilities and evidence directly to standard compliance controls in real time.

Do I need to install anything on my servers?

No install is required for public targeting. If you need to test internal private networks or keep testing payloads completely inside your isolated VPC boundaries, you can deploy a Private Runner with a single container execution command.

How does credit usage work?

Credits are utilized during runner active target exercises. Usage depends directly on target scope sizes, simulation test depths, and runner active time. You can expand capacities as your footprint grows.

What types of security assessments are supported?

The platform executes continuous web application scans, API request validation vetting, multi-cloud perimeter assessments, sandbox break-out simulations, and code exploitability audits.

Where can I learn how to operate the platform?

We maintain comprehensive customer documentation that covers everything from your first discovery run to deploying private runners. Read the documentation at nullsquare.net/docs for a complete operating guide.

Secure the unknown.

Continuous Penetration Testing

Run continuous security testing across your websites, APIs, cloud assets, and private environments. Review findings, reports, and live agent activity in one unified dashboard.

Want to see it in action?

Building with the best

We partner with the teams shaping security, cloud, and frontier AI to keep your defenses ahead of the threat.

Product Flow

How it works

From setup to report, the platform tracks what is tested, maps your scope boundaries, and streams findings in real time.

SET UP YOUR SCOPE

Connect what you want to test

Add a website, API, repository, or private target. NullSquare maps the scope and prepares the run from a clean starting point.

WorkspaceCONFIG

Status

READY

// STEP_01 // PREVIEW

READY // 0X0

RUN THE ASSESSMENT

Let the agent do the work

The agent explores the target, runs the right tools, follows evidence, and validates supported issues before reporting.

WorkspaceEXECUTE

Status

ACTIVE

// STEP_02 // PREVIEW

READY // 0X1

REVIEW FINDINGS

Turn findings into action

Review validated findings, inspect the retained proof, share the report, and rerun checks after fixes land.

WorkspaceREVIEW

Status

COMPLETE

// STEP_03 // PREVIEW

READY // 0X2

Ready to explore?

Explore the live interactive platform demo in seconds. No configuration required.

// LIVE DEMO|FULL PLATFORM PREVIEW

Platform

Core capabilities

Built for security and engineering teams that need clear, actionable findings without the noise.

Global runner network

Execute anywhere

Deploy agents inside your VPC, on-prem, or across global cloud regions.

6 Nodes Active

Exploitability Analysis

Code-aware analysis

Continuous exploitability vetting for every PR and repository transmission.

GitHub WebhookLIVE

Critical findings verified in PR #128.

Runner EU-WEST2m

Automated scan completed: 0 issues.

S3 Monitor4m

Unencrypted bucket detected in STAGE.

Continuous Automation

Always-on coverage

Schedule recurring tests, watch runner health, and track automation activity over time.

July 2026

SMTWTFS

Done

Active

Planned Live

Enterprise Integrations

Global connect

Native support for the tools your security and engineering teams live in.

GitHubSecure Code

JiraTicket Sync

SlackInstant Alerts

SplunkSIEM Ingest

Compliance & audits

Continuous control mapping

Null-Ai continuously maps offshore execution telemetry and vulnerability findings directly to active compliance controls.

Preview · In active development

This compliance mapping is in active development and testing. The frameworks, controls, and readiness shown here are illustrative samples — not a live audit of your environment.

SOC 2 Type II

6 of 8 controls mapped

91%

ISO/IEC 27001

5 of 8 controls mapped

84%

NIST CSF 2.0

4 of 7 controls mapped

82%

PCI-DSS v4.0

5 of 7 controls mapped

78%

Trust Services Criteria

SOC 2 Type II

Continuous automated offensive vulnerability scans mapping directly to CC7 security controls with complete log trails.

91%

Readiness6 of 8 Controls

CC6.1Logical Access Controls

Agent tests container credential boundaries and RBAC mapping.

Passing

CC6.3Boundary Defenses

Autonomous scans verify VPC ingress/egress policies and WAF rules.

Passing

CC7.1Vulnerability Management

CRITICAL: Port 22 open directly to public gateway on stage-runner-01.

Failing

CC7.3Incident Detection & Response

Splunk integration connection waiting for event log ingestion handshake.

In review

Continuous telemetry sync active

Flexible pricing

Select the plan built for your scope

Start testing public boundaries instantly, expand test cycles, and deploy secure Private Runner networks when needed.

MonthlyAnnual

Lite Plan

Starter

Basic boundary scans.

Free

100 credits/month
1 concurrent runs
1 active scopes

Plus Plan

Plus

Ideal for fast-growth applications.

$50/mo

5,000 credits/month
2 concurrent runs
1 active scopes

Pro

Complete offensive vulnerability pipeline.

$500/mo

50,000 credits/month
Scheduled Automations
Internal Node Execution
Alert integrations
3 concurrent runs
5 active scopes

Enterprise Plan

Enterprise

Tailored scope, private runners & high capacity.

Custom

Custom credit pool
Custom run capacity
Custom scope limits
Alert integrations
24h support

All plans include automated logging • secure sandbox isolation • continuous audit mapping

Organizational Verification

Request a pentest scope review

Share your details and we'll get back to you to confirm scope, schedule, and testing windows.

Pricing & Scope FAQ

Common questions regarding deployments

Direct security support

null@nullsquare.net///+962 776 671 283

Latest from the blog

Security thinking from the latest release.

Read the newest NullSquare field note, or open the full blog for more articles on AI security, continuous testing, release gates, and attack surface coverage.

Read latest View all articles

Abstract frontier AI model inside a containment boundary with prompt injection paths and defensive monitoring signals.

June 20, 20266 min read

The Fable ban is really a scope-control warning

Anthropic Fable 5 showed the hard truth of frontier AI safety: stronger coding and bug-finding models are also stronger cyber systems.

AI safetyPrompt injectionCyber capability

Secure the unknown.

Building with the best

How it works

Connect what you want to test

Let the agent do the work

Turn findings into action

Ready to explore?

Core capabilities

Execute anywhere

Code-aware analysis

Always-on coverage

Global connect

Continuous control mapping

SOC 2 Type II

Select the plan built for your scope

Starter

Plus

Pro

Enterprise

Request a custom SOC 2 assessment

Request a pentest scope review

Pricing & Scope FAQ

Security thinking from the latest release.

The Fable ban is really a scope-control warning