Security Tools

See Your API Key's Blast Radius

Instantly map which services your API keys can access, what permissions they hold, and how much damage a leak could cause — before an attacker finds out first.

Start Analyzing — $39/mo

No key storage. Cancel anytime.

blast-radius-analysis

AWS S3READ + WRITE + DELETE

AWS IAMLIST USERS

GitHub ReposFULL ACCESS

Stripe ChargesREAD ONLY

Blast Radius ScoreCRITICAL — 87/100

Pro Plan

$39

/month · cancel anytime

✓Unlimited key analyses
✓20+ service integrations
✓Permission diff alerts
✓Shareable risk reports
✓Priority support

Get Started

Frequently Asked Questions

Is my API key stored anywhere?

No. Keys are analyzed in-memory during the session only and never persisted to disk or database.

Which services are supported?

AWS, GCP, GitHub, Stripe, Twilio, SendGrid, Slack, and more — with new integrations added monthly.

What does 'blast radius' mean?

It's the scope of damage an attacker could cause if your key were leaked — which resources they could read, modify, or delete.