What SleuthX does
SleuthX brings enterprise and legal-grade methodology direct to consumers. Same court-admissible work the enterprise and law firms get from senior IR firms,Belkasoft, and Cellebrite-licensed shops. Quality, not budget. We are not competing with NordVPN, LifeLock, or basic antivirus tools. We are bringing enterprise-grade digital forensics into a tier consumers can actually pay for.
Coverage spans stalkerware detection on iPhone and Android, hacked-account forensic audit and recovery, romance scam attribution and documentation, identity theft forensic investigation, deleted-text recovery for divorce, OSINT exposure mapping, and domestic-violence digital forensics under a safety plan. Each engagement is structured to be evidentiary, not just felt.
Who builds SleuthX
Quinnlan Varcoe, Founder and CEO, sets the methodology, reviews edge cases, and is the named expert witness for litigation where the agent's output is challenged. Alex Riffenburgh, Co-Founder and CTO, owns the engineering and the offensive-security work that pressure-tests the agent before it ships findings. The agent itself absorbs the procedural analysis that previously required senior-analyst hours; the cases run through it serve as both production output and training data.
Three engagement modes
Pick the mode that matches what you need. The agent is the throughline across all three — what changes is how often it runs and how much practitioner time comes with it.
- Subscription — four tiers, one week free on each. SleuthX Triage at $100/mo (agent ready to respond when something happens). SleuthX Watch at $200/mo (continuous monitoring + active threat protection). SleuthX Investigate at $300/mo (forensic + OSINT depth + 2 hours practitioner time monthly). SleuthX Enterprise at $500/mo (the power-user suite for advanced consumers and DFIR practitioners — multi-seat access, deeper integrations, 4 hours practitioner consultation monthly). Tiers stack; each one includes everything from the tiers below it.
- Project-based forensics — six-rung ladder, $995 to $50,000+.Triage Assessment ($995 flat), Single-Device Forensics ($2,500 to $4,500), Multi-Device Divorce / Family ($5,000 to $15,000), Active Harassment / Stalkerware ($5,000 to $10,000), Complex Multi-Actor ($15,000 to $50,000), Expert Witness ($5,000 retainer + $400/hour). Scoped in writing before any retainer is collected.
- Hourly — $400 per hour, every service. The same standardized rate for personal forensics, divorce work, hacked-account recovery, OSINT, breach-counsel support, and every bracket of expert-witness work (case review, deposition prep, deposition, trial testimony). 4-hour-per-session minimum without a retainer.
Why these prices
Premium positioning is deliberate. The pricing funds the senior-practitioner time required to keep methodology current with the threat landscape and is comparable to enterprise retainer pricing per device covered. The methodology is the same one the enterprise gets from senior IR firms for $50,000 to $500,000 minimums. If you only need a one-time look at a specific incident, the project ladder starts at $995. If you need continuous coverage, the subscription tiers start at $100/mo. If you need open-ended senior time, hourly is $400 across the board.
What we will not do
- Publish a finding Quinn has not reviewed.
- Promise outcomes we cannot prove.
- Run a single automated scan and call it forensics.
- Take cases where simpler steps (police report, IC3 filing, platform-native recovery) would resolve the situation. We will tell you and decline.
- Bill for work that was not scoped and approved in writing.
How it works
- Confidential consultation. NDA-protected. 30 to 60 minutes. Direct conversation with Quinn. No sales process.
- Scoped engagement. Written proposal with defined deliverables, pricing, and timeline. Triage, subscription, or forensic case engagement depending on what fits.
- Investigation, review, and findings. The agent runs the procedural forensic work. Quinn reviews every output. You receive a written report you can act on, structured for police, court, counsel, or your own decision-making.
What separates SleuthX from antivirus and identity-protection apps
Antivirus scans for known malware signatures. Identity-protection monitors public breach databases. Neither one investigates a specific incident on your devices or accounts. Neither one produces a court-admissible report. Neither one is reviewed by a certified forensic practitioner. SleuthX is forensic methodology, not signature matching. The comp set is enterprise IR firms and Cellebrite-licensed shops, not NordVPN or LifeLock.
Why enterprise and legal-grade methodology matters
Enterprise IR firms and Cellebrite-licensed shops charge $50,000 to $500,000 for enterprise incident response and $5,000 to $15,000 per consumer case. That quality of work was previously out of reach for individuals. SleuthX keeps the methodological rigor and brings it inside a tier a consumer can actually pay for, because the agent absorbs the procedural analyst time. Quinn still owns case judgment.
How SleuthX handles each of the consumer practices
- Stalkerware and spyware detection
SleuthX runs the iOS configuration-profile audit, MDM enrollment check, jailbreak detection, package-list reconciliation on Android, and known-stalkerware database matching. Quinn reviews findings before any removal step is recommended.
- Hacked-account forensic audit and recovery
SleuthX reconstructs login timelines, device-list audits, and access logs across email, social, banking, and cloud accounts. Recovery actions are sequenced so the attacker loses access before they can retaliate.
- Romance scam and catfish attribution
SleuthX traces account-creation patterns, image-reuse detection, and money-flow documentation. The deliverable is a written record structured for police, IC3, and counsel.
- Identity theft forensic investigation
SleuthX investigates how the exposure happened, surfaces ongoing access points, and documents evidence usable by police, banks, and counsel. Same-week response on active cases.
- Deleted-text recovery for divorce
SleuthX assists with court-admissible phone extraction. Deleted texts, hidden apps, photos, and chat history are preserved with documented chain of custody under principal review.
- Divorce and family-law digital forensics
SleuthX covers the broader forensic record across devices and accounts. Findings are structured for family court and coordinated with your attorney under privilege.
- OSINT exposure mapping
SleuthX maps your digital footprint, identifies who someone really is, traces anonymous harassers, and documents what is publicly available about you. Court-ready evidence collection.
- Domestic-violence digital forensics
SleuthX operates under a safety plan. Examination of cloned device images when alerting the abuser is a risk. Reporting structured for protective orders and shared with advocate or attorney as you direct.
- Privacy and exposure reduction
SleuthX assists with data-broker removal, account-hardening, and ongoing monitoring. Built for individuals and families who want a smaller digital footprint.
Why this work matters
Targeting personal cybersecurity stack. Quinn holds 15 active certifications across GIAC, AWS, Splunk, CompTIA. Methodology trusted by Fortune 50 enterprises, defense contractors, and the attorneys who refer to us. The agent extends that methodology to people who could not previously afford it.
