What SleuthX does
SleuthX brings enterprise and legal-grade methodology direct to consumers. Same court-admissible work the enterprise and law firms get from senior IR firms,Belkasoft, and Cellebrite-licensed shops. Quality, not budget. We are not competing with NordVPN, LifeLock, or basic antivirus tools. We are bringing enterprise-grade digital forensics into a tier consumers can actually pay for.
Coverage spans stalkerware detection on iPhone and Android, hacked-account forensic audit and recovery, romance scam attribution and documentation, identity theft forensic investigation, deleted-text recovery for divorce, OSINT exposure mapping, and domestic-violence digital forensics under a safety plan. Each engagement is structured to be evidentiary, not just felt.
Who builds SleuthX
Quinnlan Varcoe, Founder and CEO, sets the methodology, reviews edge cases, and is the named expert witness for litigation where the agent's output is challenged. Alex Riffenburgh, Co-Founder and CTO, owns the engineering and the offensive-security work that pressure-tests the agent before it ships findings. The agent itself absorbs the procedural analysis that previously required senior-analyst hours; the cases run through it serve as both production output and training data.
Three ways to work with SleuthX
Pick the one that matches what you need. The agent is the throughline across all three — what changes is whether you run it yourself, hand it to our team, or run a whole team on it.
- Self-serve tool — $995 once, every tool unlocked. A personal cybersecurity service that investigates, not just alerts. The one-time purchase includes $995 of usage credit; after that, usage draws down a prepaid token balance as tools run — top up anytime, pay only for what you use. SleuthX Enterprise at $20,000/mo is the team tier: frontier reasoning, a dedicated analyst escalation channel, and team billing.
- Done-for-you forensics — device packages from $2,000. $2,000 for 1 device, $5,000 for 3 devices, and $7,000 for 5 devices — each including the $995 lifetime license. Scoped in writing on a free triage call before any retainer is collected.
- $400/hr flat — for everything else. The same standardized rate for additional devices, divorce work, hacked-account recovery, OSINT, breach-counsel support, and every bracket of expert-witness work (case review, deposition prep, deposition, trial testimony). The largest complex and litigation cases run $15,000–$50,000, scoped per case. 4-hour-per-session minimum without a retainer.
Why these prices
Premium positioning is deliberate. The pricing funds the senior-practitioner time required to keep methodology current with the threat landscape and is comparable to enterprise retainer pricing per device covered. The methodology is the same one the enterprise gets from senior IR firms for $50,000 to $500,000 minimums. If you want to run it yourself, the self-serve tool is a one-time $995 purchase. If you want us to do the work, done-for-you device packages start at $2,000. If you need open-ended senior time, hourly is $400/hr across the board.
What we will not do
- Publish a finding Quinn has not reviewed.
- Promise outcomes we cannot prove.
- Run a single automated scan and call it forensics.
- Take cases where simpler steps (police report, IC3 filing, platform-native recovery) would resolve the situation. We will tell you and decline.
- Bill for work that was not scoped and approved in writing.
How it works
- Confidential consultation. NDA-protected. 30 to 60 minutes. Direct conversation with Quinn. No sales process.
- Scoped engagement. Written proposal with defined deliverables, pricing, and timeline. Triage, subscription, or forensic case engagement depending on what fits.
- Investigation, review, and findings. The agent runs the procedural forensic work. Quinn reviews every output. You receive a written report you can act on, structured for police, court, counsel, or your own decision-making.
What separates SleuthX from antivirus and identity-protection apps
Antivirus scans for known malware signatures. Identity-protection monitors public breach databases. Neither one investigates a specific incident on your devices or accounts. Neither one produces a court-admissible report. Neither one is reviewed by a certified forensic practitioner. SleuthX is forensic methodology, not signature matching. The comp set is enterprise IR firms and Cellebrite-licensed shops, not NordVPN or LifeLock.
Why enterprise and legal-grade methodology matters
Enterprise IR firms and Cellebrite-licensed shops charge $50,000 to $500,000 for enterprise incident response and $5,000 to $15,000 per consumer case. That quality of work was previously out of reach for individuals. SleuthX keeps the methodological rigor and brings it inside a tier a consumer can actually pay for, because the agent absorbs the procedural analyst time. Quinn still owns case judgment.
How SleuthX handles each of the consumer practices
- Stalkerware and spyware detection
SleuthX runs the iOS configuration-profile audit, MDM enrollment check, jailbreak detection, package-list reconciliation on Android, and known-stalkerware database matching. Quinn reviews findings before any removal step is recommended.
- Hacked-account forensic audit and recovery
SleuthX reconstructs login timelines, device-list audits, and access logs across email, social, banking, and cloud accounts. Recovery actions are sequenced so the attacker loses access before they can retaliate.
- Romance scam and catfish attribution
SleuthX traces account-creation patterns, image-reuse detection, and money-flow documentation. The deliverable is a written record structured for police, IC3, and counsel.
- Identity theft forensic investigation
SleuthX investigates how the exposure happened, surfaces ongoing access points, and documents evidence usable by police, banks, and counsel. Same-week response on active cases.
- Deleted-text recovery for divorce
SleuthX assists with court-admissible phone extraction. Deleted texts, hidden apps, photos, and chat history are preserved with documented chain of custody under principal review.
- Divorce and family-law digital forensics
SleuthX covers the broader forensic record across devices and accounts. Findings are structured for family court and coordinated with your attorney under privilege.
- OSINT exposure mapping
SleuthX maps your digital footprint, identifies who someone really is, traces anonymous harassers, and documents what is publicly available about you. Court-ready evidence collection.
- Domestic-violence digital forensics
SleuthX operates under a safety plan. Examination of cloned device images when alerting the abuser is a risk. Reporting structured for protective orders and shared with advocate or attorney as you direct.
- Privacy and exposure reduction
SleuthX assists with data-broker removal, account-hardening, and ongoing monitoring. Built for individuals and families who want a smaller digital footprint.
Why this work matters
Built for personal cybersecurity at evidentiary grade. Quinn holds 15 active certifications across GIAC, AWS, Splunk, CompTIA. Methodology trusted by Fortune 50 enterprises, defense contractors, and the attorneys who refer to us. The agent extends that methodology to people who could not previously afford it.
