Tuck Sentinel

One exposed port. One leaked key. One very bad week.

Your server is probably fine. Probably. A fixed-scope, read-only hardening QuickCheck for solo developers and small SaaS teams — catches the SSH, firewall, patching, and EC2-metadata mistakes that take you down before your users do.

Request a Server QuickCheck Check email DNS instead See a sample report

One host

Pilot QuickCheck

$149

Best fit for one Ubuntu/Debian VPS or EC2 host you own or are authorized to administer.

Pay $149 — Pilot

Refined

Standard QuickCheck

$249

Same scope, refined templates, and one async clarification pass within 14 days of delivery.

Pay $249 — Standard

Email DNS

Inbox/DNS QuickCheck

$99

SPF, DKIM, DMARC, MX, and sender alignment review for one domain. No DNS login or mailbox access.

See Inbox/DNS offer

Inbox

Inbox Cleanup QuickCheck

$79

Reclaim a noisy Gmail mailbox. You run a read-only survey script under your own OAuth; we send back a written cleanup plan. From $19 DIY pack up to $499 Enterprise.

See Inbox Cleanup offer

Not a pentest

What it is not

Advisory only. Not a penetration test, exploit validation, compliance certification, legal opinion, insurance attestation, incident response, deliverability guarantee, or security guarantee.

What you get

One authorized Linux/EC2 host reviewed.
Customer-run read-only collector by default — no server credentials handed over.
Prioritized Markdown/PDF-ready written report.
Plain-English remediation checklist.
One async clarification pass.

Best fit

Solo founder or indie SaaS
Freelance / contract engineer
Small agency managing client hosts
Owns / administers one host

Required limitations: Tuck Sentinel is independent and is not AWS-approved, AWS-certified, sponsored, or endorsed. Written customer authorization is required before any assessment. The customer remains responsible for backups, operations, remediation decisions, provider policy compliance, and any changes made after the report.