Terms of Service
Last updated: June 3, 2026
1. Acceptance of Terms
By accessing or using the RedRun security scanning platform ("Service"), you agree to be bound by these Terms of Service ("Terms"). If you do not agree to these Terms, do not use the Service. RedRun reserves the right to update these Terms at any time, and your continued use of the Service constitutes acceptance of any modifications.
2. Description of Service
RedRun provides automated security assessment tools that perform passive reconnaissance, active vulnerability verification, and AI-assisted security analysis on domains specified by the user. The Service is designed to identify potential security issues including, but not limited to, misconfigured headers, SSL/TLS issues, DNS security gaps, exposed sensitive files, and known vulnerabilities.
Version Status: Please note that the Service is currently operating as the v0 version, which functions strictly as an external scanner. Operations are limited exclusively to scanning the external attack surface, which includes identifying subdomains, open ports, public endpoints, S3 buckets, and API key leaks in GitHub.
3. Authorized Use Only
You may ONLY scan domains and infrastructure that you own or have explicit written authorization to test.
Unauthorized scanning of third-party systems is a violation of these Terms and may violate applicable laws including the Computer Fraud and Abuse Act (CFAA), the UK Computer Misuse Act, and equivalent legislation in other jurisdictions. You bear full legal responsibility for any scans you initiate.
4. User Responsibilities
By using the Service, you represent and warrant that:
- ・You have proper authorization to perform security testing on the specified target(s).
- ・You will not use the Service to attack, disrupt, or damage any system or network.
- ・You will comply with all applicable local, state, national, and international laws.
- ・You will not attempt to reverse engineer, decompile, or disassemble the Service.
- ・You will handle any scan results responsibly and in accordance with responsible disclosure practices.
- ・You will not use the Service to facilitate any form of unauthorized access to third-party systems.
5. Scan Data & Privacy
Scan results are generated in real-time and are not persistently stored on our servers beyond the duration of your session. We do not sell, share, or distribute your scan results to any third party. Aggregated, anonymized metadata (e.g., scan counts, general vulnerability statistics) may be used for service improvement.
Email addresses provided for report delivery are used solely for that purpose and are not retained after delivery. We do not send marketing communications unless you explicitly opt in.
6. Limitation of Liability
The Service is provided "AS IS" and "AS AVAILABLE" without warranties of any kind, either express or implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose, and non-infringement.
RedRun does not guarantee that scans will identify all vulnerabilities or security issues. The absence of findings does not indicate that a system is fully secure. Scan results should be used as one component of a comprehensive security program.
In no event shall RedRun, its founders, employees, or affiliates be liable for any indirect, incidental, special, consequential, or punitive damages, including without limitation, loss of profits, data, or business opportunities arising out of or related to your use of the Service.
7. AI-Generated Content
Portions of the scan reports, including executive summaries and remediation guidance, are generated using artificial intelligence. While based on verified technical findings, AI-generated content may contain inaccuracies. All findings are marked with their verification source (active scan, Nuclei, or AI-interpreted). Users should validate recommendations before implementing changes to production systems.
8. Rate Limiting & Fair Use
The Service enforces rate limits to prevent abuse and ensure availability. Free-tier users are limited in the number of scans they can perform per time period. Circumventing rate limits or using automated tools to submit excessive scan requests may result in temporary or permanent suspension of access.
9. Termination
RedRun reserves the right to suspend or terminate your access to the Service at any time, with or without cause, and with or without notice. Grounds for termination include, but are not limited to: violation of these Terms, unauthorized scanning activity, or use of the Service for illegal purposes.
10. Indemnification
You agree to indemnify, defend, and hold harmless RedRun and its founders, employees, and affiliates from and against any claims, liabilities, damages, losses, and expenses (including reasonable legal fees) arising out of or in any way connected with your use of the Service, your violation of these Terms, or your violation of any rights of a third party.
11. Governing Law
These Terms shall be governed by and construed in accordance with the laws of the State of Delaware, United States, without regard to its conflict of law provisions. Any disputes arising under these Terms shall be subject to the exclusive jurisdiction of the courts located in Delaware.
12. Contact
If you have questions about these Terms of Service, please contact us at: bekedil072@gmail.com