Platform Update April 19, 2026

Two years in.
Here's what's changing.

An honest update on the Community Plan, what's staying free, and what's coming next — directly from the person who built it.

rx
RSECloud Founder
@rxrsec  ·  Solo-built since March 2024

RSECloud went live in March 2024. No funding. No co-founder. No revenue. Just the conviction that the security community deserved better free tooling, and the stubbornness to build it alone.

Over the past two years this platform has been used by 5,000+ security researchers and has indexed over 2.4 billion assets across the public internet. In several areas it quietly outperformed APIs that charge $50–75 a month. Most of you never noticed, because it just worked. That was the point.

But infrastructure is not free, and two years of absorbing those costs solo means something has to change. This post explains exactly what that is.

What's changing in June 2026

Starting June 2026, the Community Plan drops from 2,000 to 1,000 credits per month. The plan stays completely free.

Account Status Credits / Month
Verified (email confirmed) 1,000
Unverified (email not confirmed) 500
Action required if your email is not verified Check your inbox for the verification link from when you signed up and confirm it now. Unverified accounts will be permanently capped at 500 credits/month starting June — this is not a temporary restriction. Do it before June.

The paid plans under the main RSECloud platform will also be winding down. Active paid subscribers will receive a separate email with details.

What's staying free

Two community tools are not going anywhere and remain fully maintained:

BugBoard
Free Forever Active
bugboard.rsecloud.com

A free intelligence platform for bug bounty hunters. 10,000+ indexed HackerOne reports, 5,000+ community writeups, and a Google Dork generator across 15+ categories. Everything is searchable, no sign-up required, no paywall. If you do recon or vulnerability research and haven't used it yet, it's worth thirty seconds of your time.

AZRecon
Free Forever Active
azrecon.rsecloud.com

An Azure intelligence engine. Map the full domain footprint of any Microsoft 365 tenant in seconds — discover hidden domains, verify regions, pull Tenant IDs, and run brand intelligence lookups without touching an API key or managing any infrastructure. Built for red teamers and ASM workflows.

What's live now

RSECloud has been shifting toward specialized, high-signal developer and security tooling. The first product out of that shift is already live.

SerperX
Live 50% Off — Ends May 31
serperx.rsecloud.com

A real-time SERP API for developers, AI engineers, and security teams. Clean structured JSON from live search results — sub-800ms average response time, 99.9% success rate, pay-as-you-go with no subscription required. 1,000 free queries on signup plus 100 free credits every month after that, forever. No credit card needed.

SerpAPI $75 / month
Serper.dev $50 / month
SerperX $9 one-time  — 50% off until May 31

What's coming — early bird access

Three more tools are in development. As an existing RSECloud user you qualify for founding member access on all three — up to 50% off, locked permanently to your account, no payment required to reserve.

BugBounty Radar
End Q2 2026 Up to 50% Off
bugbountyradar-offer.rsecloud.com

A full-stack attack surface intelligence platform for bug bounty hunters. Pre-enumerated datasets for 800+ public programs across HackerOne, BugCrowd, HackenProof, YesWeHack, and Intigriti. 13+ intelligence modules running 24/7 — subdomains, cloud assets, DNS takeover detection, Wayback URLs, SERP dorking, and Postman leak scanning. Real-time Slack and Telegram alerts the moment a new asset appears. Think SecurityTrails meets Shodan, built specifically for hunters.

First 50 spots: 50% off permanently  ·  Reserving costs nothing

ASM Platform
Q3 2026 Up to 50% Off
asm-offer.rsecloud.com

Enterprise-grade attack surface management without the enterprise price tag. Legacy vendors charge $50,000+ annually. This is pay-as-you-go, agentless, and deployable in five minutes. Continuous subdomain monitoring, cloud asset discovery across AWS, Azure, and GCP, port scanning, certificate tracking, and one-click compliance exports for SOC 2 and ISO 27001. Built by OSCP, CARTP, and CARTE certified researchers. Founding access includes a 15-day free trial, unlimited seats, and a lifetime 50% discount on any plan.

Tier 1 is already filling  ·  No payment at reservation

JS Intelligence Tool
Q3 2026 50% Off First Year
js-offer.rsecloud.com

An AI-powered, zero-configuration scanner that analyzes your web application's JavaScript to find exposed secrets, map shadow and zombie API endpoints, and auto-generate API documentation. Input a domain — within 15 minutes it crawls your entire public JavaScript footprint and flags every hardcoded credential visible to the internet. AWS keys, Stripe secrets, GCP tokens, high-entropy strings. Useful for developers, DevSecOps teams, and bug bounty hunters targeting client-side exposures that existing tools miss.

47 founder spots remaining at 50% off

Building this without a team, without investment, and without charging anyone for two years has been one of the harder things I've done. Every user who shared a tool with a colleague, mentioned it in a Discord, or linked to it somewhere — that's the only growth that happened here.

If any of this is useful to someone you know in security or development, sharing this page costs nothing and means more to a solo-built project than you might expect.

— RSECloud Founder

© 2026 RSECloud  ·  rsecloud.com

Projects  ·  Pricing  ·  [email protected]