Free scan — no credit card

ButWhy.Cloud

Because your cloud is a mess.

86 checks across 4 modules. Entra ID · CSPM · Email · Endpoints. Results in 5–10 minutes.

🔒 Read-only 🗑️ Zero data stored ⚡ 5–10 min

🔴 Recent findings from anonymous scans

Loading... Critical

What we scan

6 modules. One scan.

🔑

Entra ID

MFA gaps, Global Admins, legacy auth, Conditional Access, PIM

35 checks · Live

☁️

CSPM

Open ports, NSGs, public blobs, Key Vault, SQL, VMs, Defender

16 checks · Live

📧

Email Security

SPF, DKIM, DMARC, Safe Links, Safe Attachments, external forwarding

15 checks · Live

💻

Endpoint & Devices

Intune compliance, BitLocker, MDE, tamper protection, ASR rules, LAPS

20 checks · Live

🛡️

DLP / Purview

Credit cards, ZA ID numbers, sensitive labels, retention policies

Coming Soon

⚙️

DevOps

PATs, secrets in repos, pipeline security, branch protection

Coming Soon

Pricing

Free to start. Paid when it counts.

Free

$0

1 scan every 30 days

86 checks · 4 modules
Risk score & compliance scorecard
Top 5 findings per module
Full evidence detail
Remediation steps
Scheduled scans
PDF / compliance report

Starter

$79

per month

86 checks · 4 live modules
All findings unlocked
Full evidence detail
Step-by-step remediation
ISO 27001 & NIST CSF mapping
Scheduled scans
PDF compliance report

Get Started

Most Popular

Professional

$199

per month

86 checks · 4 live modules
All findings + evidence
Weekly automated scans
AI executive summary
ISO 27001 & NIST CSF report
New finding alerts
DLP + DevOps (coming soon)

Get Started

Annual

$1,499

per year · save 37%

Everything in Professional
Weekly automated scans
AI executive summary
ISO 27001 & NIST CSF report
New finding alerts
Priority support
DLP + DevOps (coming soon)

Get Started

All paid plans billed in USD · Cancel anytime · No setup fees

🛡️ Read-only permissions — we cannot change anything 📧 Report delivered to your email only 🔑 Revoke access anytime in Entra 🗑️ Scan data not stored after report delivery