1. Create your account¶
CredWatch is self-serve. There's no sales call required to start on the Free tier.
Sign up¶
- Go to app.cred-watch.com/signup.
- Enter your company name, work email, and a strong password.
- Click Create account — you'll be logged in immediately.
Password requirements¶
- 13 characters minimum
- At least one uppercase letter
- At least one lowercase letter
- At least one number
- At least one symbol
We use bcrypt to store your password. We never see the plaintext.
Verify your email¶
After signup we send a verification email. You can use the portal for everything except triggering scans until the email is verified.
- Didn't get the email? Go to app.cred-watch.com/resend-verification. We rate-limit resends to once every few minutes.
- Click the link in the email — it's valid for 72 hours. After that, request a new one.
Pick your tier¶
You start on Free. Limits at a glance:
| Plan | Repos | Domains | Scans/day | Commit history | Slack | Webhooks | API |
|---|---|---|---|---|---|---|---|
| Free | 10 | 3 | 1 | ✗ | ✗ | ✗ | ✗ |
| Starter | 50 | 50 | 4 | ✗ | ✓ | ✗ | ✗ |
| Growth | 200 | 200 | 24 | ✓ | ✓ | ✓ | ✓ |
| Enterprise | ∞ | ∞ | custom | ✓ | ✓ | ✓ | ✓ |
Full pricing and feature comparison at cred-watch.com/pricing. You can upgrade at any time from Billing → Manage subscription.
Set up MFA (recommended)¶
CredWatch holds sensitive findings about your systems. Turn on two-factor authentication before doing anything else:
- Go to Profile → Multi-factor authentication.
- Scan the QR with Authy, 1Password, Google Authenticator, etc.
- Save the 8 recovery codes somewhere safe — you'll need them if you lose your phone.
See Multi-factor authentication for the full walk-through.
Next: Connect GitHub →