CertRadar

identity inventory · discovery · evidence

Find every domain and cert your company owns.
Including the ones nobody remembers buying.

CertRadar is the inventory and discovery layer for your organization's cryptographic identity — domains, certificates, and (soon) the agents acting on your behalf. Complete inventory in 10 minutes. SOC 2 evidence in one click. Shadow IT surfaced by design.

Beta in weeks. Early design partners shape the product.

Discover what you forgot.
Certificate Transparency scans surface every subdomain and cert ever issued for your company — including the ones nobody remembers buying.
Prove it to your auditor.
One-click SOC 2 evidence export: complete inventory, ownership, renewal history, exception log. Auditors get what they need; you get your weekend back.
Never lose track again.
Daily health checks on every identity asset. Expiry alerts 30/14/7/3/1 days out. Email, webhook, Slack. Per-asset ownership and alert routing.

Priced for who actually uses it

Self-serve for devs and small teams. Sales-assisted for security and compliance buyers.

Free
$0/mo
5 assets. Daily checks. Email alerts. Individual or side-project use.
Join waitlist
Pro
$9/mo
50 assets. Webhooks + Slack. Per-asset ownership. Devs and small teams.
Join waitlist
Business
$299/mo
1,000 assets. CT log discovery. Shadow-IT reports. Ownership attribution. SSO. Audit log.
Join waitlist
Compliance
$2,000/mo
Unlimited assets. SOC 2 evidence export. Portfolio view for agencies / vCISOs. Custom alert routing. Priority support.
Join waitlist

Team / enterprise with custom needs? Talk to us.

Questions buyers actually ask

How is this different from Axonius or JupiterOne?

Those are enterprise-priced ($50K+/yr) and take a quarter to deploy. CertRadar is 10 minutes to first inventory, priced for the SMB-to-mid-market gap that nobody serves well.

What counts as an 'identity asset'?

Today: domains and SSL/TLS certificates. We're already tracking the data model for the next wave — service accounts, API credentials, and autonomous agents — so when you need it, you don't re-platform.

We already have Let's Encrypt and auto-renewal. Why this?

Auto-renewal solves the easy 80%. We solve the 20% that hurts: the cert that renewed but didn't deploy, the subdomain an ex-engineer spun up, the client domain nobody remembers owning, the evidence package your auditor asks for at 5pm Friday.

Who's this for?

Security, IT, and compliance leads at companies 50-2000 employees. Agencies managing client infrastructure. Fractional CISOs who need evidence across a portfolio of clients.

When does the inventory layer ship?

Beta inside weeks. Join the waitlist and you're first in — early design partners shape the SOC 2 evidence format and the discovery workflow.

Join the waitlist

One email. No spam. Early design partners help us ship the right evidence format the first time.