How long does the scan take?
Typically, scans complete within 1 hour. Deep or extended scans may take longer depending on scope.

Will the scan affect my site or users?
No impact at all. Our scans are designed to test the WAF layer only, without interacting with or touching your actual application.

Can I open a follow-up support ticket?
Yes. Follow-up support is available at an additional cost, unless covered under an existing support agreement.

Does the scan comply with any standards?
Absolutely. We align with DSMM Guidelines (Command #9 evaluations), and provide insights relevant to PCI-DSS, HIPAA, and other common compliance frameworks.

Can I schedule the scan in advance?
Yes. You can request a time window for the scan.
Full on-demand scheduling is also available, billed as an extra service.

How can I justify the cost of the scan?
Ask yourself: What’s the cost of not knowing your WAF coverage?
This scan reveals risk, gaps, and missed detections—valuable intel that can save you from breaches.

How is the report delivered?
You’ll receive a detailed report via email, including test results, RMS score, and insights.

Do you store my scan data or results?
No, by default we do not store anything.
If you request a follow-up scan or comparison, we can retain results per your request only.

Do you test for CVEs or 0-days?
Yes, we offer CVE-specific and 0-day simulation scans as part of our advanced testing package.