Scan Your AWS
Infrastructure
See your actual waste and compliance risks. No agents. No modifications. EU-hosted.
Everything you need to secure and optimize
A growing suite of scanners working together to find waste, ensure compliance, and give you complete visibility.
Cloud Inventory
Complete catalog of your AWS resources. EC2, RDS, S3, ALB, and more in one unified dashboard.
Orphaned Resources
AI-powered detection of idle EBS volumes, unused EIPs, and forgotten snapshots draining your budget.
Data Residency
EU-only compliance checks to flag resources deployed in US, Asia, or other non-EU regions.
SSL Certificates
Full coverage of ACM certificates and endpoint scans. Get alerts at 60, 30, 14, and 7 days before expiry.
How we compare
See why teams choose ScanOrbit over manual audits and native AWS tools.
| Feature |
ScanOrbit
Recommended | AWS Cost Explorer | Manual Audit |
|---|---|---|---|
| Setup time | 5 minutes | 30 minutes | Weeks |
| Orphaned resources | | | |
| SSL expiry alerts | | | |
| Data residency checks | | | Varies |
| GDPR-safe (EU hosting) | | | Varies |
| Starting cost | €0/mo | Free (limited) | €5k-50k |
Start scanning in under 5 minutes
No agents to install. No SSH access required. Just a simple IAM role with read-only permissions.
Connect AWS
Choose which scanners to enable and create a customized read-only IAM role. Only grant permissions for the services you want to scan.
Automatic Scan
Our scanner analyzes all your resources across all enabled regions. Typically completes within a minute.
Get Findings
Review prioritized findings with cost estimates, severity levels, and actionable recommendations.
{
"Version": "2012-10-17",
"Statement": [{
"Sid": "ScanOrbitReadAccess",
"Effect": "Allow",
"Action": [
"ec2:DescribeInstances",
"ec2:DescribeVolumes",
"s3:ListAllMyBuckets",
// ... based on selected scanners
],
"Resource": "*"
}]
}Example policy. Actual permissions depend on your scanner selection.
Scan Capabilities
Finding Details
No credit card required
Built for Security from Day 1
We're an early-stage startup, but security isn't a nice-to-have for us — it's foundational. Here's what we do today:
SOC2 & ISO 27001 audits scheduled for late 2026.
Simple, Transparent Pricing
Start free. Upgrade anytime. 14-day free trial for paid plans.
Free
- AWS Accounts Single
- Scan Frequency Single scan
- Data Retention 7 days
- Infrastructure Health
- Infrastructure Map
- Issues Control
- Cost Optimization
- API Access
- Scan Priority
- Team Features
Pro
- AWS Accounts Single
- Scan Frequency 1 hour cooldown
- Data Retention 90 days
- Infrastructure Health
- Infrastructure Map
- Issues Control
- Cost Optimization
- API Access
- Scan Priority
- Team Features
Team
- AWS Accounts More than one
- Scan Frequency Unlimited
- Data Retention 180+ days
- Infrastructure Health
- Infrastructure Map
- Issues Control
- Cost Optimization
- API Access
- Scan Priority
- Team Features
| Feature | Free €0 | Pro €19 /month | Team €79 /month |
|---|---|---|---|
| AWS Accounts | Single | Single | More than one |
| Scan Frequency | Single scan | 1 hour cooldown | Unlimited |
| Data Retention | 7 days | 90 days | 180+ days |
| Infrastructure Health | | | |
| Infrastructure Map | — | | |
| Issues Control | — | | |
| Cost Optimization | — | | |
| API Access | — | — | |
| Scan Priority | — | — | |
| Team Features | — | — | |
| Get Started | Start Free Trial | Start Free Trial |
Frequently asked questions
Everything you need to know about ScanOrbit security and features.
What's included in the Free plan?
The Free plan includes 1 AWS account, all scanner types, single successful scan, overall health score. It's perfect for trying out ScanOrbit and getting started with basic infrastructure monitoring.
What's the difference between Pro and Team?
Pro (€19/month) is for individual DevOps engineers - you get 1 AWS account, access to all investigating tools, unlimited scans with cooldown, data retention. Team (€79/month) allows to add many AWS accounts, API access, scan priority, team collaboration features, and priority email support.
Is there a free trial for paid plans?
Yes! Both Pro and Team plans come with a free trial period. You can also use our Free plan indefinitely to evaluate the core functionality.
How do you prevent unauthorized access?
We use a read-only IAM role with zero write permissions. Our policy only includes Describe* and List* actions - we literally cannot modify, create, or delete any resources in your AWS account.
Is my data safe?
All data is encrypted at rest (AES-256) and in transit (TLS 1.3). We only store metadata about your resources - never the actual data inside them. Everything is hosted in EU data centers.
Do you modify any AWS resources?
Never. We only scan and report. Our IAM role has no write permissions. We can't start, stop, create, or delete anything. It's technically impossible for us to make changes.
What scanner types are available?
We offer orphaned resource detection (EBS volumes, Elastic IPs, snapshots), SSL certificate expiry tracking, data residency compliance checks, and complete cloud inventory. Free plan has limited access, while Pro and Team get all scanner types.
How long is data retained?
Free: 7 days. Pro: 90 days. Team is negotiable. TTL counting starts after the last scan. You can request deletion at any time.
Can I connect multiple AWS accounts?
Free and Pro plans support 1 AWS account. Team plan supports many AWS accounts with consolidated dashboards and cross-account reporting.
Can I cancel anytime?
Yes, you can cancel your subscription at any time. You'll continue to have access until the end of your billing period. No long-term contracts or cancellation fees.
Do you support other cloud providers?
Currently we support AWS only. Azure and GCP support is on our roadmap. Contact us if you're interested in multi-cloud support.
Still have questions?
Contact us directly