PRICING · EU · NIS2-READY

Start with three traps.
Upgrade when the signal matters.

Use the free plan to prove the model. Move to Starter or Professional when you want more token types, richer investigation and controlled response workflows.

Free
No credit card
€0
forever

Plant your first traps today. No commitment.

  • 3 honeytokens (URL, AWS key, DNS hook only)
  • Email alert on trigger
  • Basic investigation report
  • No automatic containment
Starter
€499
/ month

Growing teams that need detection plus critical automatic response without enterprise overhead.

  • 20 honeytokens (URL, AWS, DNS, DB credential, PDF)
  • AI investigation report
  • MITRE ATT&CK mapping
  • Risk scoring 0 to 100
  • NIS2 Article 23 PDF export
  • 1 containment integration
  • 10 critical containment actions / month
Professional
€1,499
/ month

You have cloud infrastructure, a remote team, sensitive documents or AI tools. You want confirmed breach signals and clear response actions before the attacker gets comfortable.

  • 100 honeytokens (all token types)
  • Everything in Starter
  • Automatic containment engine
  • AWS IAM key revocation
  • Cloudflare IP blocking
  • Webhook / SIEM integration
  • Configurable risk threshold
  • Attacker actor classification (human / script / AI agent)
Enterprise
Custom
tailored quote

Complex infrastructure, procurement requirements, or a board that needs security evidence before rollout.

  • 500 honeytokens by default or custom contract
  • Everything in Professional
  • All cloud integrations
  • LLM SSH honeypot
  • Advanced AI attacker detection
  • 99.9% SLA
  • Security review and DPA support
  • Dedicated onboarding
  • Custom alert routing
Not sure which plan fits? → Talk to us
FILE № 02 · ASKED

Common
questions.

If you don't see your question here, write to hello@vantuz.co. A human replies, usually within the hour.

A honeytoken is a fake credential, URL, or document that looks real but has no legitimate use. No employee should ever touch it. The moment someone does, it's an attacker. Guaranteed, with no false positives.

No. Vantuz is fully agentless. You plant the honeytokens manually or via our API in minutes. No software to deploy, no firewall rules to change.

When a honeytoken is triggered and the risk score exceeds your threshold, Vantuz can run deterministic response actions such as Cloudflare IP blocking or signed webhook delivery. AI explains and recommends; it does not make destructive decisions by itself.

Yes. Vantuz supports NIS2 incident readiness by creating high-confidence detection signals, an evidence timeline, attacker context, response notes and an incident dossier your team can use when assessing Article 23 notification duties.

Yes. Monthly plans can be cancelled at any time. Annual plans are non-refundable but include a 20% discount.

You'll receive an alert and can upgrade your plan or archive existing tokens. We never delete tokens silently.

The core Vantuz data plane runs in the EU. Some enrichment and AI sub-processors may process limited data outside the UK/EEA under safeguards described in our Privacy Policy.

FILE № 03 · DEPLOY

Start free.
See it work.
Then decide.

Deploy your first token Talk to us
EU core data plane · NIS2 incident-ready · No agent on your network