§§ FIG. 01 · VOL. III

Every module, every plan,
sorted like a catalogue.

Mythoscan ships eleven scanner modules split across two tiers — passive and active. This page is the exhaustive list, sorted for skimming. What runs without ownership verification, what requires it, and which plan you need for each.

§ MODULE CATALOGUE

Eleven modules.
Two tiers.

PASSIVE — NO VERIFICATION
ACTIVE — VERIFICATION REQUIRED
01

Security headers

PASSIVE

18 HTTP headers checked: CSP, HSTS, X-Frame-Options, Referrer-Policy, Permissions-Policy, and more. Copy-paste ready fix snippets for nginx, Apache, and Caddy.

Trial
Starter
Agency
Pro
02

SSL / TLS audit

PASSIVE

Certificate chain, validity, SANs, cipher suites, TLS versions, forward secrecy, HSTS enforcement, and expiry alerts.

Trial
Starter
Agency
Pro
03

DNS records

PASSIVE

A, AAAA, MX, NS, TXT, CNAME, SOA inventory. DNSSEC enforcement check. Misconfiguration detection.

Trial
Starter
Agency
Pro
04

Email security

PASSIVE

SPF qualifier, DMARC policy strength, DKIM selector discovery, MTA-STS enforcement, TLS-RPT reporting, BIMI. 0–100 score with copy-paste fixes.

Trial
Starter
Agency
Pro
05

Technology detection

PASSIVE

Fingerprints over 200 stacks: CMS, frameworks, libraries, CDN, analytics. Version extraction for CVE matching.

Trial
Starter
Agency
Pro
06

Subdomain enumeration

PASSIVE

crt.sh + AlienVault OTX passive DNS. Optional VirusTotal and SecurityTrails with your own API keys. Surfaces forgotten staging and backup subdomains.

Trial
Starter
Agency
Pro
07

GDPR / CNIL compliance

PASSIVE

Cookie drops before consent, third-party trackers, missing legal notice / privacy policy, consent banner quality. FR/EU differentiator.

Trial
Starter
Agency
Pro
08

CVE detection

ACTIVE

Cross-reference detected technologies with NVD to surface known CVEs with CVSS scores and mitigations.

Trial
Starter
Agency
Pro
09

Port scanning

ACTIVE

Common and custom ports with concurrent scan. Service identification and banner grabbing. Requires ownership verification.

Trial
Starter
Agency
Pro
10

WordPress audit

ACTIVE

Core version, active plugins, active theme. Cross-referenced with wpscan.com vulnerability database. Requires ownership verification.

Trial
Starter
Agency
Pro
11

Banner grabbing

ACTIVE

SSH, HTTP, FTP, SMTP, POP3, IMAP, MySQL service fingerprinting. Version extraction. Requires ownership verification.

Trial
Starter
Agency
Pro
§ FEATURE MATRIX

The complete comparison.

FIG. 12 — 15
HORIZONTAL SCROLL ON SMALL SCREENS
CATEGORY · FEATURE
Trial
0€
per month
Starter
29€
per month
Agency
79€
per month
Pro
199€
per month
§ SCANNING
Passive modules
5 / 7
7 / 7
7 / 7
7 / 7
Active modules
1 / 4
4 / 4
4 / 4
Monitored domains
1
5
25
100
Scans per month
1
50
500
5,000
Scan frequency
manual
weekly
daily
daily
§ REPORTS
White-label PDF
Mythoscan watermark
CSV / JSON export
Custom brand colors
Shareable public linkv2
§ MONITORING & ALERTS
Email alerts on diffs
Certificate expiry alerts
Slack / Discordv4
§ ORGANIZATION
Team seats
1
1
3
unlimited
Client grouping
Multi-client dashboard
Ownership verification
DNS or file
DNS or file
DNS, file, mandate
§ API & INTEGRATIONS
Public REST API
Webhooks
GitHub / GitLab webhookv4
§ SUPPORT & DATA
Data region
Paris
Paris
Paris
Paris
Support channel
community
email
email
priority email
Data retention
30 d
1 y
2 y
5 y

◆ Annual billing available with −20% discount · 14-day trial on all paid plans · no credit card

— FIN.

Pick the plan that fits you now.

Start on Free or Starter. Upgrade the day your portfolio outgrows the limits. No annual lock-in, no sales call.