Gain insights into your certificate inventory and attack surface
Phishing and domain impersonation detection, certificate inventory, and attack surface discovery made easy to reduce outage risk and improve security posture.
Why our customers love Certhawk
Fully featured certificate monitoring, impersonation detection, and more.
Certificate inventory, in one place
Detect and monitor all your certificates in one place, including those issued by certificate authorities you may not be aware of. Get alerts for certificates near expiry and discover unmapped infrastructure.
- Configurable alerting
- Define your certificate best practices and get notified when they are violated
- Discover forgotten or unknown infrastructure before your adversaries do
- Prevent outages caused by certificate expiration
Easily discover lookalike domains
We detect certificate requests for domains that look similar to your own in real time so you can get ahead of impersonation attacks.
- Real-time detection
- Easy to configure
- Monitors registrations with all major certificate authorities
- Homographic analysis, doppelgänger detection, distance analysis and more (coming soon)
Eliminate noise with custom rules
Easy to use rules make it simple to define what you care about, and what you don't. Exclude findings based on your own criteria to reduce noise and highlight what's important.
- Ignore findings by domain
- Ignore specific subdomains or entire subomain tree
- Define your preferred certificate authorities and get notified when certificates are issued by someone else
- Choose what notifications you receive on a per-domain basis
Pricing Plans
Simple, transparent pricing for what you need. No hidden fees, and you can cancel anytime.
Starter
$0 /month
Get started for free to begin monioring your certificates for a single domain and explore the features.
- Single domain
- Monitor up to 100 certificates
- Email notifications
Pro
$5 /month
Access to all features for up to 10 domains. Limit increases available by request.
- Monitor up to 10 domains
- Up to 250 certificates per domain
- Access to all features
- Webhook notifications
- Limited time price
Enterprise
Coming soon
Access to all features for unlimited domains. Includes priority support and direct access to the development team.
- Unlimited domains
- No certificate limits
- Access to all features
- Priority support
- Help define new features
FAQs
Having a certificate inventory is important because it helps you understand your exposure to certificate risks. These include outages caused by certificate expiration, and security risks associated with certificates issued by untrusted CAs. Visibility into certificate expiration also helps prevent unplanned outages and makes compliance easier.
Certhawk monitors certificate transparency logs in real time to provide visibility into certificate issuance and expiration. It also provides alerts for certificates issued by untrusted CAs, and can help discover certificates issued to similar looking domains which may be used to impersonate your domain for phishing attacks.
Your plan can be upgraded at any time. Log in to your Certhawk dashboard and go to the settings page to view your current plan and upgrade options.
Yes, we offer a free trial period of 14 days for all paid plans. Additionally, you can always try out the free plan to see if Certhawk is a good fit for your needs. There is no minimum contract period and you can cancel anytime.
Certhawk is a product designed by security engineers, and aimed at security teams. No personally identifiable information is collected or stored directly by Certhawk. Additionally, we follow industry standard practices to secure the data we do store. This includes encryption in transit and at rest, integrated security testing during development, and regular internal security audits.
From the Certhawk dashboard, you can make a support inquiry or feature request by clicking your user profile icon in the top right and selecting Support. If you do not yet have an account and would like to get in touch, you can use the form below to do so.