Skip to content
LIVE · Monitoring 24/7

Stop Dark Web Threats Before They Reach Your Clients

NullSight monitors the dark web 24/7 and alerts your team the moment your clients' credentials, domains, IPs, or executive emails are exposed. Delivered directly into ConnectWise PSA and Kaseya BMS.

See NullSight in Action View Plans
  • ConnectWise PSA
  • Kaseya BMS
  • No hardware required
  • Up and running in 5 minutes

nullsight.app / alerts

LIVE
  • Critical

    Credential exposure detected

    12s ago

    client: Acme Healthcare

    asset: admin@acme-health.com

    source: Underground forum · Stealer log

    Ticket #4821 created in ConnectWise PSA
  • High

    Domain mention found

    4m ago

    client: Northwind Logistics

    asset: northwind.io

    source: Telegram channel · threat actor

    Ticket #4820 created in Kaseya BMS
  • Critical

    VIP email exposure

    11m ago

    client: Pioneer Bank

    asset: ceo.personal@gmail.com

    source: Stealer log · infostealer

    Ticket #4819 created in ConnectWise PSA
  • Medium

    Password hash leaked

    23m ago

    client: Greenfield Legal

    asset: $argon2id$v=19$m=65536…

    source: Breach database · 2024-A

    Ticket #4818 created in Kaseya BMS
  • High

    IP infrastructure mention

    1h ago

    client: Acme Healthcare

    asset: 203.0.113.42

    source: Criminal forum thread

    Ticket #4817 created in ConnectWise PSA

Last sync: 2s ago

14,328 sources monitored

24/7 Continuous monitoring
< 1 hr Average alert time
5 min Average deployment time

Compliance documentation included in Comply

HIPAA

Healthcare

SOC 2

Trust services

ISO 27001

Infosec mgmt

See Comply

Your clients' credentials are already out there.
They just don't know it yet.

Most breaches go undetected for weeks or months. By the time someone notices, the damage is done: passwords reused, accounts compromised, clients looking for someone to blame.

Breaches go undetected for months

The average organization doesn't discover a credential exposure until long after it happens. Attackers move immediately. You need to move faster.

Your ticketing system stays silent

Without dark web intelligence, ConnectWise and Kaseya BMS can't alert you to credential exposure. NullSight closes that gap, automatically.

One exposed credential can trigger an audit

HIPAA, ISO 27001, and SOC2 frameworks require you to demonstrate proactive monitoring. Exposed credentials without documented response put your clients, and your contract, at risk.

// What we monitor

Full coverage across every attack surface

NullSight monitors the assets that matter most (corporate and personal), because attackers don't distinguish between the two.

Corporate Domains

Every email address and credential associated with your client's domain, scanned continuously across dark web markets, forums, and data dumps.

IP Addresses

Public IPs linked to your client's infrastructure monitored for exposure, mention in threat actor forums, and credential leak association.

User Accounts & Passwords

Usernames and password hashes tied to your client's organization. Detected and alerted before they can be used in a follow-on attack.

Executive Personal Emails

Personal Gmail, Outlook, and other email accounts of key executives: CEOs, CFOs, IT admins. Provided directly by the MSP for targeted monitoring. Because high-value targets don't stop being targets after hours.

Assets are registered by the MSP through NullSight. No client-side software or portal required.

// How it works

From registration to alert in minutes

NullSight integrates into your existing workflow. No new tools to learn. No dashboards to hand off to clients.

  1. 01

    Register your client's assets

    You provide the domains, IPs, user accounts, and executive personal emails you want monitored. Everything is managed from the NullSight MSP dashboard.

  2. 02

    We monitor continuously

    Our system scans dark web markets, criminal forums, paste sites, breach databases, and data dumps. 24 hours a day, 7 days a week.

  3. 03

    Alert fires in your PSA

    The moment an exposure is detected, NullSight automatically creates a ticket in ConnectWise PSA or Kaseya BMS with full details: what was exposed, where it was found, and when.

  4. 04

    You act. Your client is protected.

    Remediate with the information you need. Comply clients also receive a certified exposure report and compliance documentation ready for audit submission.

// Plans & pricing

Three plans. One goal: keeping your clients off the dark web.

Start with a one-shot Assessment, move to ongoing Monitor for most clients, or upgrade to Comply for a full compliance evidence package.

Assessment

Assessment

One-shot dark web scan.

A single scan of your client's domain across multiple breach intelligence sources. Delivers a branded PDF report with all exposed credentials found — no ongoing commitment.

One-time scan

per domain · no subscription

  • 1 domain scanned across multiple breach databases
  • Branded NullSight PDF report
  • Exposed emails, passwords, and breach sources
  • Delivered by Tesys within 24 h
  • No portal access, no recurring charge
Request Assessment
Recommended

Monitor

Monitor

Continuous breach monitoring.

Monthly automated scans with portal access, email alerts, and on-demand PDF reports. The right fit for most SMB clients under your management.

Per client

monthly or annual · based on environment

  • Monthly multi-source breach scans
  • Portal: findings table and full breach history
  • Email alerts on every new exposure
  • On-demand PDF reports
  • 1 domain, 5 IPs, and 3 personal emails included
  • Add-ons: extra domains, IP blocks, personal emails
Get a Quote

Comply

Comply

Compliance evidence package.

Everything in Monitor, plus the structured evidence your clients need to pass audits and maintain certifications. Covers ISO 27001, SOC 2, NIST CSF, NIS2, and GDPR — the same monthly deliverables satisfy the threat-intelligence and continuous-monitoring requirements across all of them.

Annual plan

tailored to your client · quote on request

  • All Monitor features included
  • Stealer-log monitoring — credentials stolen by infostealer malware
  • Monthly structured evidence report, formatted for auditor review
  • Timestamped breach log with chain of custody (CSV + PDF)
  • Incident response documentation per finding
  • CISO executive summary for management review
Request Quote

All plans are priced based on your client's environment. Fill out the quote form and receive a tailored proposal within 1 business day.

Plan comparison

All features at a glance.

Feature Assessment Monitor Comply
Domain monitoring
User credential monitoring
Full exposure report (PDF)
IP address monitoring
Executive personal email monitoring
PSA ticket creation (ConnectWise + Kaseya)
MSP multi-client dashboard
Stealer-log intelligence
Advanced infostealer data
Compliance evidence report (audit-ready PDF)
Timestamped breach log with chain of custody
Incident response documentation per finding
CISO executive summary
Guaranteed SLA

// Integrations

Works inside the tools your team already uses

NullSight doesn't add complexity to your workflow. It fits inside it. Alerts arrive where your team already lives.

ConnectWise PSA

Automatic ticket creation with client mapping, priority tagging, and full exposure details. Your team acts without leaving ConnectWise.

Kaseya BMS

Native alert routing into Kaseya BMS service tickets. Client asset linking included. No manual steps required.

API access available on request. Additional integrations planned. Contact us to discuss your stack.

// Built for MSPs

Built for MSPs. Designed to resell.

NullSight is a managed service you can offer directly to your clients, under your brand, at your margin.

White-label ready

Present NullSight under your own brand. Your clients see your service. You control the relationship.

Volume pricing

Managing multiple clients? Pricing scales with you. The more clients you protect, the better your margin.

New revenue line

Add dark web monitoring to your managed security stack. Comply especially positions you to serve compliance-sensitive clients in healthcare, finance, and legal.

Become a NullSight Partner

// Free for MSPs

Free dark web exposure check on one of your client domains.

Pick a domain you manage. We will run a real check against our sources and email you the results within one business day. No commitment. No credit card.

https://
  • Real check, not a sample
  • Results within one business day
  • You must have client authorization

By submitting, you confirm you have authorization from the domain owner and you agree to our Privacy Policy.

Want to see a sample report first? Download a sample exposure report (PDF)

// FAQ

Common questions

What exactly does NullSight monitor?

NullSight monitors corporate domains, IP addresses, user credentials, and personal email addresses of key executives. All registered by the MSP on behalf of their clients.

How does the ConnectWise / Kaseya BMS integration work?

When an exposure is detected, NullSight automatically creates a service ticket in your PSA with full details about the compromised asset. No manual steps required on your end.

What is the difference between Assessment, Monitor, and Comply?

Assessment is a one-time scan of a single domain — no subscription, no portal. Monitor is an ongoing monthly service with portal access, PSA integration, and email alerts. Comply adds a full compliance evidence package: monthly audit-ready reports, infostealer coverage, incident response documentation, and a CISO executive summary — covering ISO 27001, SOC 2, NIST CSF, NIS2, and GDPR.

What compliance frameworks does Comply support?

Comply delivers structured evidence for ISO 27001, SOC 2, NIST CSF, NIS2, and GDPR. The same monthly deliverables — evidence reports, timestamped logs, and incident response documentation — satisfy the continuous-monitoring and threat-intelligence requirements across all of them.

Do my clients need to install anything or access a portal?

No. Asset registration and monitoring are managed entirely by the MSP through the NullSight dashboard. There is no client-facing portal or software to install.

How do executive personal emails get added for monitoring?

Personal email addresses for VIP monitoring are provided directly by the MSP. They are registered in NullSight alongside corporate assets and monitored under the same service.

Can I white-label NullSight for my clients?

Yes. NullSight is designed to be resold under your brand. Contact us to discuss white-label options.

// Request a quote

Know when your clients are exposed before damage is done.

All plans are priced based on your client's environment. Fill out the form and we'll send a tailored proposal within 1 business day.

  • One plan per client — not per MSP
  • Monthly or annual plans available
  • Separate proposal per client
  • Up and running in under 5 minutes

Questions? contact@nullsight.co

Request a Quote

One form per client. We'll reach out within 1 business day with a tailored proposal.

A — Your Information

Payment link sent here.

B — Client Environment

How many clients are you submitting this quote for?

C — Service Selection

Service tier

By submitting, you agree to our Privacy Policy.