Docs / Reference / Plans & licensing
Plans & licensing
The short version. Crusader's Free tier is a complete daily-driver proxy + history + Repeater + passive scanner — unlimited in time, commercial use allowed, no account or telemetry. Hunter Pro adds the active and automation layer (active scanner, full Attack Studio, mobile/Frida, hosted Beacon, write MCP, full CLI). Squad and Team Pro stack team workspace, RBAC, and (Team Pro) SSO/SCIM on top. The Hunter Pro trial is 14 days, just an email; a paid lease has a 21-day offline grace; and you move a license between machines from License & billing → Device management.
01What's in Free
Free is not a crippled demo. It's a self-contained intercept proxy and analysis workstation that you can run a real engagement on, indefinitely, with no account, no email, and no telemetry. Commercial use — client work and bug bounty — is allowed.
What you get on Free, forever:
- Local intercept proxy — native HTTP/2 MITM on
127.0.0.1:8080, WebSocket capture, and request interception (Off / Watch / Hold). - Full HTTP history — every exchange captured and searchable, with the per-project SQLite store you can query read-only via
crusader sql. - Site Map — the complete local endpoint tree (smart auth/IDOR flags are the Pro add-on).
- Repeater, Decoder, Comparer — manual replay with per-tab identity, multi-format decoding, and side-by-side diffing.
- Project save / open and import — bring in Burp
.burp, HAR, Fiddler SAZ, and Caido projects; import is Free forever. - Passive scanner — analysis over captured history (the active proof-replay layer is Pro).
- Intruder (Sniper) — Attack Studio Lite, capped at 2000 generated requests.
- Match & Replace — up to 10 active regex rules.
- Beacon — local / bring-your-own Interactsh server for out-of-band testing (the hosted
crusader.shBeacon is Pro). - Read-only MCP and basic CLI — the 17 read-only MCP tools and core CLI verbs, so agents and scripts can read your project.
- Community plugins — install and run JavaScript extensions (advanced plugin APIs are Pro).
Free is genuinely unlimited in time — there is no trial clock on it. The trial is a separate thing: it's the 14-day taste of Hunter Pro, covered in section 03.
02The four tiers, compared
The ordering is Free < Hunter Pro < Squad < Team Pro. Squad and Team Pro are team plans built on top of every single-seat Hunter Pro feature — so a Squad seat is a full Hunter Pro seat plus the team layer, and Team Pro is Squad plus enterprise controls. The default rule is simple: anything not listed as Free is Hunter Pro, and the team tiers only add team features.
| Capability | Free | Hunter Pro | Squad | Team Pro |
|---|---|---|---|---|
| Proxy, history, Intercept (request) | Yes | Yes | Yes | Yes |
| Repeater, Decoder, Comparer, Site Map | Yes | Yes | Yes | Yes |
| Project import (Burp / HAR / SAZ / Caido) | Yes | Yes | Yes | Yes |
| Passive scanner | Yes | Yes | Yes | Yes |
| Read-only MCP, basic CLI | Yes | Yes | Yes | Yes |
| Local / BYO Beacon | Yes | Yes | Yes | Yes |
| Intruder Sniper (2000-request cap) | Yes | Full Attack Studio | Full Attack Studio | Full Attack Studio |
| Match & Replace | 10 rules | Unlimited | Unlimited | Unlimited |
| Active scanner / proof replay | — | Yes | Yes | Yes |
| Mobile / Frida, mTLS export, JA3 transport | — | Yes | Yes | Yes |
| Identity Shadow Replay, One-Button Hunt | — | Yes | Yes | Yes |
| Hosted Beacon (crusader.sh) | — | Yes | Shared pool | Shared pool |
| Full MCP (write tools), full automation CLI | — | Yes | Yes | Yes |
| Report generation, evidence packaging | — | Yes | Yes | Yes |
| Team workspace + roles (RBAC), audit trail | — | — | Yes | Yes |
| Team identity secret controls | — | — | Yes | Yes |
| Extended retention, project templates, assignment boards | — | — | — | Yes |
| Private extension packs, SSO / SAML / SCIM | — | — | — | Yes |
| Bring-your-own-AI (LLM Diff) | — | Yes | Yes | Yes |
| Hosted AI credits | — | — | — | — |
Pricing: Team Pro is $6,999 / year (7 seats, SSO/SCIM, assignment boards, audit trail, private packs, pooled Beacon quota). Hunter Pro and Squad are per-seat and priced dynamically — see the live numbers on the pricing page or in the in-app License & billing screen. Larger orgs needing hosted AI credits, SSO at scale, or custom terms should look at Enterprise.
Hosted AI credits are not bundled in any of these four tiers. Crusader's AI features are bring-your-own-AI: you connect your own model key. Only Enterprise plans can include hosted credits.
03The 14-day Hunter Pro trial
You can try the full Hunter Pro feature set for 14 days with just an email (no card). Start it from License & billing in the app, or from the CLI:
# start the 14-day Hunter Pro trial — just an email, no card
crusader license trialDuring the trial every Pro capability is unlocked: active scanning, the full Attack Studio, mobile/Frida, hosted Beacon, write MCP tools, full automation CLI, report generation. When the 14 days are up the app reverts to Free — see what expiry pauses — and nothing you created is touched. Activate a purchased key at any point to convert without losing state:
# convert the trial (or upgrade Free) to a paid license
crusader license activate <your-key>The trial is 14 days. Don't confuse it with the 21-day number, which is the offline lease grace on a paid license (section 04), not the trial length.
04The 21-day offline lease grace
A paid Crusader license is checked out as a lease. Crusader is local-first, so it does not need to phone home on every launch — once a live lease is validated, the machine carries a 21-day offline grace. If you go offline, travel, work in an air-gapped lab, or the licensing service is briefly unreachable after a live lease expires, your Pro features keep working for up to 21 days while the lease re-validates.
This grace is what makes Pro practical on a disconnected laptop or in a sealed test environment. It is distinct from, and longer than, the 14-day trial. When the machine reconnects, refreshing the lease (in Device management, or crusader license status) renews the window.
05What expiry actually pauses
This is the part people worry about, so it's worth being precise. When a trial ends, a lease lapses past its grace, or you deactivate a machine, Crusader pauses only new Pro actions. It does not lock your data, quit, or delete anything.
Stays fully available on Free after expiry:
- Local projects — every project opens and edits as before.
- History — all captured traffic remains searchable.
- Findings — local findings stay readable and triageable (re-running active scans or exporting reports is the Pro action).
- Identities — saved auth identities remain, including imported mTLS certs.
- Beacon evidence — past callbacks and any findings promoted from them stay in the project.
What pauses is the active and automation layer going forward: starting an active scan or proof replay, the full Attack Studio, mobile/Frida sandbox actions, hosted Beacon, write MCP tools, full automation CLI, and report export. Everything in section 01 keeps working. In short: you never lose access to work you've already done — you just lose the ability to take new Pro-gated actions until you re-activate.
06Moving a license to a VM or VPS
A Hunter Pro seat is yours to move between machines — laptop to a VM, a fresh build box, or a VPS you run scans from. The mechanism is Device management on the License & billing screen, which lists the machines holding your seat and lets you refresh the lease or deactivate this machine.
Only test systems you are authorized to test. Running active scans or automation from a VPS doesn't change that — keep it pointed at in-scope targets.
If you still have the old machine
- On the old machine, open License & billing → Device management and choose deactivate this machine. This frees the seat.
- On the new machine (VM/VPS), activate the same key:
crusader license activate <your-key>. - Confirm with
crusader license status— it should show the new device holding a live lease.
If the old machine is gone or offline
Activate on the new machine and refresh the lease from Device management. Because a paid license carries the 21-day offline grace, a brief overlap or a gap while the old lease ages out won't lock you out. If a seat is stuck, crusader license status shows the current device/lease state, and you can re-run the refresh once you're back online.
Your projects, history, findings, and identities live under ~/.crusader (relocatable with CRUSADER_HOME) — they are not tied to the license. Moving the license moves your entitlement; copy or re-sync the workspace separately if you want the same projects on the new box.
07The license CLI
Everything on the License screen has a command-line equivalent, so you can check entitlement and switch accounts headlessly — handy on a VPS or in a script. Like every Crusader verb, these print JSON to stdout.
# where do I stand — tier, lease, device, grace
crusader license status
# which gated features are currently unlocked
crusader license features
# list the license accounts this install knows about
crusader license accounts
# switch the active account (multi-account installs)
crusader license switch
# activate a purchased key on this machine
crusader license activate <your-key>
# start the 14-day Hunter Pro trial (email, no card)
crusader license trial
# drop back to the Free tier on this machine
crusader license freecrusader license status is the one to reach for first when something's gated unexpectedly — it reports the tier, whether the lease is live or running on offline grace, and which device holds the seat. crusader license features answers "is this specific capability on right now?" before you script an action that needs it.
08FAQ
Is Free time-limited?
No. Free is unlimited in time — no countdown, no nag, no expiry. The proxy, full history, request interception, Site Map, Repeater, Decoder, Comparer, project save/open and import, the passive scanner, local/BYO Beacon, and read-only MCP are all Free forever, with no account, email, or telemetry.
What happens when the 14-day trial ends?
The app drops back to Free. Nothing is deleted — local projects, history, findings, identities, and Beacon evidence stay available. Only new Pro actions pause (active scanning, full Attack Studio, mobile/Frida, hosted Beacon, write MCP). Activate a key any time with crusader license activate <key> to convert without losing state.
Can I use Free commercially?
Yes. Free permits commercial use, including paid client engagements and bug-bounty work, with no per-seat fee. Hunter Pro adds the active and automation layer, but nothing in Free is limited to non-commercial use.
How do I move to a new machine?
Open License & billing → Device management on the old machine and deactivate it to free the seat, then activate the same key on the new machine with crusader license activate <key>. If the old machine is gone, activate on the new one and refresh the lease — the 21-day offline grace covers a short overlap or an offline stretch. See section 06.
Do you bundle AI credits?
No. Crusader's AI features (LLM Diff and analysis) are bring-your-own-AI — you supply your own model key. No hosted AI credits are included in Free, Hunter Pro, Squad, or Team Pro; only Enterprise plans can include them.
Want a guide that isn't here yet? Email hello@crusaderproxy.com.