# Features and Pricing Plans ## Talsec's Multi-Layered App and API Protection Model * **L0 - Detect Attacks**: Check app security state with [**freeRASP**](https://docs.talsec.app/freerasp/freerasp/introduction) & [**Talsec Portal**](https://docs.talsec.app/freerasp/freerasp/data-visualisation-portal) insights * **L1 - Protect App**: Pass pentests, combat reverse engineering, and comply with regulations with [**RASP+**](https://app.gitbook.com/s/xFHPMAbn16uoDyOtoiaC/product/rasp) and [**AppHardening (Secret Vault, Dynamic TLS Pinning)**](https://app.gitbook.com/s/xFHPMAbn16uoDyOtoiaC/product/app-hardening-suite) * **L2 - Protect Transactions**: Combat API abuse, bots, web-scraping and MiTM with [**AppiCrypt**](https://app.gitbook.com/s/xFHPMAbn16uoDyOtoiaC/product/appicrypt) * **L3 - Protect Users: Combat social engineering, phishing, malware with** [**Device Risk Scoring**](https://app.gitbook.com/s/xFHPMAbn16uoDyOtoiaC/product-previews/ai-device-risk-summary-new) **and** [**Malware Detection**](https://app.gitbook.com/s/xFHPMAbn16uoDyOtoiaC/product/malware-detection) {% embed url="" %} Talsec offers enhanced features and benefits with our RASP+ plans, building on top of our freeRASP offering. Here’s what you can expect: * **No limitations of freeRASP's** [**Fair Usage Policy**](#plans-comparison): Have an unrestricted number of app downloads\* (beyond the 100k cap of freeRASP). * **No Data Collection to Talsec Database**: Your app's data is sent to your data collection services. You can even disable data collection. * **FinTech Grade Security**: Experience advanced security features and service-level agreements (SLAs) tailored for the financial technology sector. * **Bypass Protection:** RASP+ offers enhanced security with app-specific SDK customisation, while freeRASP uses a universal binary that is more susceptible to bypass. * **Enhanced API Protection**: Safeguard your APIs and benefit from risk scoring with our proprietary technology, [**AppiCrypt®**](#appicrypt-r). For further details, please refer to the [next page](https://docs.talsec.app/freerasp/freerasp/features-and-pricing-plans/the-key-difference-freerasp-vs-rasp). ### AppiCrypt® One of the most valued commercial features is [AppiCrypt®](https://www.talsec.app/appicrypt) - App Integrity Cryptogram. It allows easy-to-implement API protection and App Integrity verification on the backend to prevent API abuse: * Bruteforce attacks * Botnets * API abuse by App impersonation * Session-hijacking * DDoS It is a unified solution that works across all mobile platforms without dependency on external web services (i.e., without extra latency, an additional point of failure, and maintenance costs). ### Malware Detection **Malware Detection** provides active in-app protection against both **known & zero-day malware**, ongoing **malware campaigns**, **counterfeit app clones**, and other **risky and suspicious apps** that could compromise user data or your backend services. It evaluates applications, highlights high‑risk findings, and reports them back to your mobile app for real‑time security decisions and logging. Combination of robust **on-device Offline Scanning for Suspicious and Risky Apps** with an **optional online App Reputation API** verifying findings against malware DB, allows you to balance privacy, performance, and coverage according to your risk model. {% hint style="info" %} #### Online Malware Database by Gen (Norton, Avira) By teaming up with [Gen](https://www.gendigital.com/), the parent company of Norton and Avast, we bring you an unparalleled malware database. It continuously evolves, drawing top-tier threat intelligence from a massive network of 500 million global users. {% endhint %} ## Plans Comparison freeRASP is freemium software, i.e. there is a [**Fair Usage Policy (FUP)**](https://docs.talsec.app/freerasp/terms-of-service/fair-usage-policy-fup) that imposes some limitations on free usage. {% hint style="success" %} You can try freeRASP and then upgrade easily to an enterprise service. Learn more about commercial features at [talsec.app](https://talsec.app/?utm_source=docs-portal). {% endhint %} #### [**Get your price** ](https://www.talsec.app/#price?utm_source=docs-portal)**for premium products.**
freeRASPRASP+ StarterFull App Safety Suite StarterFull App Safety Suite Business
SubscribeSubscribeGet your price
Best fit forLow value apps and educational purposeTry RASP+ and perform Penetration testingTry advanced resilience and protection of App and APIsProduction usage
App Shielding SDKfreeRASP SDK is a free, easy-to-integrate runtime threat detection solution for small businesses and projects, supporting up to 100,000 device downloads. It helps you quickly grasp the main features, experiment, and try integrating Talsec SDKs.

While it is a good threat detection tool, freeRASP’s limited resilience against bypasses and limited telemetry data collection make it unsuitable for commercial use in production, especially in regulated or privacy-sensitive domains.

RASP+ SDK delivers banking-grade security designed for professional, regulated, or high-risk apps needing maximum hardening.

RASP+ is built to pass rigorous penetration tests, ensuring real-time detection and mitigation of attacks.

It guarantees compliance and robust defense.

RASP+ SDK delivers banking-grade security designed for professional, regulated, or high-risk apps needing maximum hardening.

Its customizable SDKs include advanced threat prevention like AppiCrypt for API and Transaction Integrity protection.

RASP+ is built to pass rigorous penetration tests, ensuring real-time detection and mitigation of attacks.

It guarantees compliance and robust defense.		RASP+ SDK delivers banking-grade security designed for professional, regulated, or high-risk apps needing maximum hardening.

Its customizable SDKs include advanced threat prevention like AppiCrypt for API and Transaction Integrity protection.

RASP+ is built to pass rigorous penetration tests, ensuring real-time detection and mitigation of attacks.

With strict privacy (no data sent to Talsec) ✅, it guarantees compliance and robust defense.
Resilience to Reverse Engineering and bypasslimitedadvanced ✅advanced ✅advanced ✅
SDK obfuscationlimited
(same for all users)		advanced (individual per build) ✅advanced (individual per build) ✅advanced (individual per build) ✅

Root & jailbreak protections

  • su, Magisk, Dopamine, KernelSU, HideMyApplist, Shamiko
basicadvanced ✅advanced ✅advanced ✅

Runtime reverse engineering controls

  • Debugger
  • Emulator / Simulator
  • Hooking and reversing frameworks (e.g. Frida, Magisk, XPosed, Cydia Substrate and more)
basicadvanced ✅advanced ✅advanced ✅

Runtime integrity controls

  • Tampering protection
  • Repackaging / Cloning protection
  • Device binding protection
  • Unofficial store detection
basicadvanced ✅advanced ✅advanced ✅

Device OS security status check

  • HW security module
  • Screen lock
  • Google Play Services availability
  • Huawei Mobile Services availability
  • Last security patch update
  • System VPN
  • Developer mode, ADB
yes yesyesyes

Anti-Spoofing & Misuse detection

yesyesyesyes

Screen Capture protection

  • Block Screen Capture, Mirroring, Sharing
  • Detect Screenshot, Screen Recording
yesyesyesyes

UI protection

  • Overlay protection
  • Accessibility services misuse protection
noyes ✅yes ✅yes ✅
Penetration Test Readycan be bypassed by professionaldesigned to sustain pentesting ✅designed to sustain pentesting ✅designed to sustain pentesting ✅
App Hardening Suite

Secret Vault for Strings Protection

  • Protect secrets in your code, third-party API keys, tokens, encryption keys, config files
  • On-the-fly key provisioning and rotation
nonoyes ✅yes ✅

Dynamic TLS Certificate Pinning

  • Strong MitM and DNS spoofing protection
  • Decoupled certificate and app lifecycle
  • Pins never stored in app
nonoyes ✅yes ✅
AppiCrypt® - App Integrity Cryptogram

AppiCrypt® for Mobile

  • API protection and anti-API abuse
  • Transactions authenticity and integrity verification
  • Device Risk Scoring
  • RASP advanced anti-bypass
nonoyes ✅yes ✅

AppiCrypt® for Web

  • API protection and anti-API abuse
  • Transactions authenticity and integrity verification
  • Browser-based Apps protection using WebAssembly
  • Anti-bot and sesion hijacking
  • Anti-web scraping
nononoyes ✅
Malware Detection

  • Detection of apps installed from untrusted stores or side-loaded
  • Detection of apps with suspicious permissions granted
  • Detection of risky apps
  • Detection of dangerous apps
basic (freeMalwareDetection)noadvanced Malware Detectionadvanced Malware Detection
App Security Monitoring and Logging
Threat events data collectionmandatory collection to Talsec servicesmandatory collection to Talsec servicesmandatory collection to Talsec servicesoptional and customizable logs destination ✅
App and threats data monitoring portal and Dashboardlimited functionality, no raw data accessfull functionality with access to raw data search ✅full functionality with access to raw data search ✅full functionality with access to raw data search ✅
Self-care portal for the SDK configurationnoyes ✅yes ✅yes ✅
Support and Maintenance
SLA and maintenance updatesnot committedyes ✅yes ✅yes (advanced variants) 🏆✅
Fair Usage Policy - up to 100K Devices
Total apps downloads limitup to 100K Devices (premium upgrade required for more)up to 10Kup to 10K100K+ Devices 🚀
End-users' threats data collection and processing by Talsecmandatorymandatorymandatoryoptional and customizable logs destination ✅
SubscribeSubscribeGet your price
*** For additional comparison details and information on planned features, please see the [next page](https://docs.talsec.app/freerasp/freerasp/features-and-pricing-plans/the-key-difference-freerasp-vs-rasp). [^1]: Basic .freeRASP threats detection mechanisms allow developers to manage reactions on detected security issues. Active threats prevention and configurable reactions make .RASP+ more resilient to bypass techniques. It implies threats prevention vs detection only in .freeRASP (API callbacks that developers would need to obscure and implement). The reactions to threats (like killing the app) can be configured to be triggered from within .RASP+ SDK at a lower level of deeply obscured Native C code. Hence it is much harder to locate and bypass by reverse engineering than reaction maid in App logic code as in .freeRASP. [^2]: .RASP+ binary SDK is built individually with binding to App-specific data (signing cert hash, package name, teamID , etc.). freeRASP SDK is entirely the same binary for all users i.e. "known for attackers". Practically the .freeRASP-protected app may be too weak to pass the professional pentesting because an experienced pentester will be capable of bypassing it. [^3]: Rooting/Jailbreaking is a technique of acquiring privileged control over the operating system of an Android/iOS device. While most users root their devices to overcome the limitations put on the devices by the manufacturers, it also enables those with malicious intent to abuse privileged access and steal sensitive information. Many different attack vectors require privileged access to be performed. Tools such as Magisk or Shadow can hide privileged access and are often used by attackers. [^4]: Man-in-the-middle attacks, risk of session hijacking and untrusted certificates forging [^5]: Geofence and region lock bypasses, mocked GPS position [^6]: Expired OTP or token reuse, trial period abuse [^7]: Parallel Space detection, fake accounts detection, promo offer / referral bonus abuse [^8]: Active protection against known malware, ongoing malware campaigns, counterfeit app clones, and other potentially risky apps is essential for the overall security posture. [^9]: App security monitoring service is shared both for Android and iOS. App security monitoring service (i.e., reports and email alerts) for .freeRASP is provided by Talsec free of charge within FUP. [^10]: Silver Support and maintenance for commercial plans with committed Reaction, Restoration and Resolution time.