DarkHorse Security At The Speed Of You.
About
About
About
Principles
Definitions
Docs
Blog
Contact
Compare
Policies
Tester Code of Conduct / Expectations
General T&Cs
Disclosure Policy
Privacy Policy
Products
Fractional Testing
VDP
Pentesting
Bug Bounty
Risk Analysis
Pricing Login Register

Proactive Security At The Speed Of You.

Easily and efficiently self-service pentests, bug bounties, and more - when and how you need them.

"I Like Needless Complexity"
- some bureaucrat, but not you.

Half The Cost.

Zero Risk.

Cut The Excess, Not Success.

Register on your own, or book a meeting to get started!

Let's Get Started!

There's A Better Way.

Find Your Vulnerabilities Today With Proactive Security Via:

Pentesting Risk Analysis Bug Bounty VDP Fractional Pentesting
Learn More

DarkHorse makes it easy and affordable for SMBs to quickly find and fix cybersecurity vulnerabilities before they become costly problems—at up to 90% less cost than traditional providers. Our simple, streamlined platform takes the burden off your shoulders, saving you time, money, and stress while keeping your business secure and your mind at ease.

Breaches are expensive; DarkHorse isn’t.


Check out the gif below to see just how easy it is to set up a pentest on DarkHorse, or check out our affordable pricing here.
Simple, Affordable, & Scalable Pentesting
  • Effortlessly set up pentest engagements in minutes.
  • Launch in hours-to-days, not weeks-to-months.
  • Whether you need fully customizable fractional engagements, in-depth comprehensive pentests, or high-level assessments, we've got you covered.
Experience better results at a more affordable price — try our Pentestimator below for a quote and get started today.
Instant, Affordable, Premium Vulnerability Disclosure Programs (VDPs)
  • Set up and launch your premium VDP in minutes.
  • Meets compliance (NIST, ISO) and best practice standards.
  • Premium, public VDP without limitation.
  • Free for organizations with 25 or fewer reports annually. Incredibly affordable for everyone else.
Hassle Free, Affordable Bug Bounties
  • Effortlessly setup a bounty program for your organization within minutes.
  • The most effective tool for indentifying risk at scale.
  • No platform fee for organizations with 25 or fewer reports annually. Incredibly affordable for everyone else.

Can't Decide What You Want / Need? Try Our Definitely-Not-AI-Decision-Helper-Thing

 Unsure what's the right solution? Check out our one-pager on the topic, or try out our Decision-Helper-Thing by clicking above.

Frequently Asked Questions

Everything you need to know about about DarkHorse
Why "DarkHorse"?
The wikipedia entry for "dark horse" starts with "A dark horse is a previously lesser-known person, team or thing that emerges to prominence in a situation, especially in a competition involving multiple rivals, that is unlikely to succeed but has a fighting chance..."

In our view, that's a perfect encapsulation of who we are. We're an upstart in the space, but despite having a large disadvantage in terms of starting position, we really do feel that we have a shot at making a mark on this industry. And for that reason, we believe we're literally and figuratively a Dark Horse. Also, it sounds cool. Or at least we think so.
You have VDP, Bug Bounty, and Pentesting / Fractional Pentesting right now; what's next?
A lot. But first and foremost, there's a lot more to do on the platform to support those first three products... for instance, there's points and gamification to be built for bug bounty, as well as reporting (for all engagement types), and a whole lot more. There's other types of pentests to be able to support, other methodologies to build, and so on. There's a ton of other features we want to build, and are slowly working our way through (SDLC integrations, more and and more advanced predictive platform driven guidance, and a whole lot more). And so on... there's no shortage of things we're excited to build!
Is this really "for the greater good"?
We assure you that this isn't about building a cash machine. We're all about transparency, so we'll just run some quick numbers for you...

  • Let's assume in year one we get ~10,000 reports. This is an astronomical number for an organization that is just starting out, but let's be ambitious.
  • With 10,000 reports, we'll say that 80% of them come from paid programs. At $5 per report - that's a mere $40,000 for a full year. For context, that's approximately how much one would make in a year of working at McDonald's in California. Keep in mind that we also offer to refund anyone this fee if they're not happy.
  • But then there's the bounty commission - let's again pick a round number that's probably too high. Let's say we facilitate $100,000 in reward payments in the first year as well. With an average commission of 6%, that's a whopping $6,0000 - and of that, at least $5,000 or more will go into paying for currency exchange fees, transaction fees, identify verification fees, and so on.
  • Add in hosting, marketing, and other costs, and there's hardly anything left over to pay anyone anything. Not to mention the months of unpaid effort that's gone into building the platform, let alone trying to sell and market it... and that's not even to speak of the costs of supporting it and our clients!
  • Said differently: if we were doing it for the money, we'd be better off working at McDonalds. We went as low as we thought was safe, and then we went lower - because we're committed to the mission of making crowdsourced and offensive security accessible and affordable for everyone. Full stop.


© 2024 DarkHorse Security, LLC. DarkHorse: Let's Ride. All rights reserved. CURRENTLY IN OPEN BETA | Need Help? | Report a Vulnerability