Pynt pricing

Try middleBrick free

What middleBrick covers

  • Per API pricing with scalable tiers
  • Free tier for initial evaluation
  • Starter tier with dashboard and alerts
  • Pro tier with monitoring and CI/CD integration
  • Enterprise tier with unlimited APIs and SSO
  • Compliance mappings to major frameworks

Pricing transparency and public rates

Public pricing for API security scanning is typically structured around API count and feature tier rather than per scan or per seat. The published tiers include a no cost entry level, a mid tier focused on API coverage and dashboard features, and higher tiers that add continuous monitoring and CI/CD integration. Enterprise offers unlimited APIs and custom options, with pricing influenced by deployment scope, support needs, and compliance reporting requirements. Exact rates are not listed in public documentation and are obtained through direct sales engagement and formal quotes.

Free tier capabilities and limits

The no cost tier is designed for initial assessment and basic automation. It supports a limited number of API evaluations per month and provides command line interface access for on demand scans. Users can run scans against public facing endpoints and receive prioritized findings with risk ratings. The scope is intentionally constrained to encourage evaluation while limiting continuous monitoring, dashboard access, and advanced integrations.

  • 3 scans per month
  • CLI access only
  • No dashboard or alerting

Starter tier for focused API coverage

The mid tier targets teams managing a small number of APIs who need scheduled scans and basic governance. It adds a web dashboard for organizing results and tracking score trends over time. Email notifications alert users to new findings, and basic compliance mappings to frameworks such as PCI-DSS 4.0, SOC 2 Type II, and OWASP API Top 10 (2023) are included. This tier supports authenticated scans with common schemes and provides downloadable reports for stakeholder reviews.

  • 15 APIs
  • Monthly scanning
  • Dashboard and email alerts
  • Basic compliance mappings

Pro tier for continuous monitoring and integration

Organizations requiring ongoing visibility and automated gate controls typically move to the higher tier. Continuous monitoring performs rescans on defined intervals and highlights new, resolved, or regressed findings. Integration options include a CI/CD plugin that can fail builds based on score thresholds, an MCP server for AI assisted workflows, and webhook delivery with HMAC-SHA256 signing. Enhanced reporting and team collaboration features such as Slack or Teams alerts are also part of this tier.

  • 100 APIs (+ pay per additional)
  • Continuous rescans
  • CI/CD integration and gates
  • Signed webhooks and compliance reports

Enterprise tier for large scale and custom controls

The top tier removes practical limits for large scale programs. Unlimited API coverage allows scanning across entire portfolios, and optional custom rules enable tuning of detection scope. Administrative features such as single sign-on, detailed audit logs, and service level agreements are provided along with dedicated support resources. Organizations with complex regulatory landscapes or high risk profiles typically operate at this level to centralize API security oversight.

  • Unlimited APIs
  • Custom rules and SSO
  • Audit logs and SLA
  • Dedicated support
See how middleBrick compares See all use cases

Frequently Asked Questions

Is pricing per scan, per seat, or per API?
Pricing is commonly structured per API count, with add ons for monitoring and integrations, rather than per scan or per seat. Enterprise arrangements may combine these models based on organizational scope.
Do public pricing tables list exact rates?
Exact rates are not published in public documentation. Contact with sales is required to obtain formal quotes that reflect API volume, feature requirements, and support levels.
What drives differences between tiers?
The primary differentiators are the number of APIs covered, frequency of scanning, depth of monitoring, integration capabilities, and the level of compliance reporting and support.
Can smaller teams start without upfront commitment?
Yes, the free tier allows evaluation with limited scans and CLI access, enabling teams to validate coverage before committing to paid options.

Related Pages

Alternatives to DetectifyViable alternatives to Detectify for API security — including middleBrick.Alternatives to Noname SecurityViable alternatives to Noname Security for API security — including middleBrick.Alternatives to Salt SecurityViable alternatives to Salt Security for API security — including middleBrick.Is Tenable worth it in 2026?Honest take on whether Tenable earns its price tag for API security.Is Prompt Security worth it in 2026?Honest take on whether Prompt Security earns its price tag for API security.Is Traceable worth it in 2026?Honest take on whether Traceable earns its price tag for API security.