Transparent. Scalable. Affordable. NUCLEUS PRICING.

MSSP? Contact us for custom pricing information.

AppSecCustom Pricing - Contact
  • Ship Secure Code Faster
  • Eliminate Stovepipes
  • Customize Risk Scoring
  • API-First Design
Enterprise$10-13 Per Asset / Per Year
  • All-in-One Data Aggregation
  • Contextualized Prioritization
  • Automated Remediation
  • Custom Integration Support
MSSPCustom Pricing - Contact
  • True Multi-Tenancy
  • Manage from 1 Platform
  • Automate Reporting
  • Volume Pricing

Interested in Application Security Pricing?

Join the growing team of security pros who already love Nucleus.


– Pedro, SensePost

(We love you, too, Pedro <3)

Want to manage application data? Request a custom quote today.

Frequently Asked Questions

A device in Nucleus is typically a computer (server, workstation, laptop, virtual machine, etc.) or a network device (router, switch, firewall, etc.) that is identified by a hostname, FQDN, database, or IP address. Nucleus discovers your devices when ingesting scan results from network and infrastructure scanners (e.g. Qualys, Tenable, Rapid 7) by counting the number of scan “targets” in the result/report.  

An application in Nucleus is typically a custom piece of software/code that is most commonly identified by a code repository, URL, container image, or application name. Nucleus discovers your applications when ingesting scan results from SAST, DAST, and SCA scanners (e.g. Fortify, Netsparker, Snyk) by counting the number of scan “targets” in the result/report.

The Acme organization is using:

  • Qualys to scan 10,000 IP addresses
  • Netsparker to scan 250 live web applications (URLs)
  • Veracode to perform static analysis scans for 50 applications 
  • Snyk to perform SCA scans for 500 code repositories

If the scan results for all four tools are imported into Nucleus, the organization will need a Nucleus subscription for 10,000 Devices (Qualys scan targets) and 800 Applications (Netsparker, Veracode & Snyk scan targets).