Loading…
Security·Dropzone AI
AI SOC analysts that autonomously investigate and triage security alerts 24/7.
Dropzone AI puts autonomous AI analysts inside the security operations center: agents that investigate alerts end-to-end across phishing, endpoint, network, cloud, identity, and insider-threat domains without a human in the critical path. It connects to existing tools like Splunk, CrowdStrike, Microsoft Defender, and AWS Security Hub via API, deploying in about an hour, and reports 300+ deployments including UiPath and Zapier.
Pros & cons
Tags
Further reading
Related in Security
Snyk
Developer security platform with DeepCode AI for SAST, SCA, and AI-generated fixes.
Snyk finds and fixes vulnerabilities in code, open-source dependencies, containers, and IaC. Its Snyk Code SAST engine, DeepCode AI, combines symbolic and machine-learning analysis with inter-file data-flow tracing to detect issues and auto-generate fixes. Integrates into IDEs, the CLI, and CI.
Worth knowing
Snyk Code is built on DeepCode AI, the symbolic+ML engine from its 2020 DeepCode buy, trained on millions of data-flow cases, not an LLM.
Noma Security
Enterprise platform to discover, govern, and protect AI agents and applications.
An enterprise AI security platform that inventories every model, agent, MCP server, and data dependency across your stack, scans for misconfigurations and supply-chain risks, red-teams AI applications, and enforces runtime guardrails against prompt injection and rogue agent behavior. Founded in Tel Aviv in 2023, it counts UiPath, Best Buy, and Nielsen among its customers. Enterprise pricing via demo.
Worth knowing
Emerged from stealth in November 2024 and closed a $100M Series B just eight months later — $132M raised in under two years.
Zenity
Security and governance for AI agents and copilots.
Zenity is a security platform for AI agents, copilots, and low-code/no-code apps built across enterprise platforms. It discovers agents in use, applies governance and security guardrails, and continuously monitors for risks and threats — giving security teams observability and runtime protection over autonomous and business-built applications.
Worth knowing
Raised a $38M Series B in 2024, co-led by Third Point Ventures and DTCP with Microsoft's M12, to secure agentic AI and low-code apps.
XBOW
Autonomous AI pentesting that finds and exploit-validates vulnerabilities continuously.
XBOW is an autonomous offensive security platform that runs AI-driven penetration tests against web applications, validating every finding through real exploitation rather than flagging unconfirmed scanner noise. Founded by Semmle founder and GitHub Copilot creator Oege de Moor, it runs continuously instead of as a point-in-time engagement. Customers include Moderna, Samsung SDS, and Tyler Technologies; it raised a $120M Series C at a $1B+ valuation in 2025.
Worth knowing
The first AI to top HackerOne's US leaderboard, beating all human hackers after filing 1,000+ vulnerability reports in months.
Pangea
API-based security guardrails for AI apps: prompt injection, PII redaction, and access control.
Pangea provides composable, API-first security services for AI applications. AI Guard and Prompt Guard defend against prompt injection, sensitive-data disclosure, and malicious content, alongside AI access control and visibility products. Pay-as-you-go with a free monthly balance, integrable via LiteLLM and Portkey.
Worth knowing
Founded by Oliver Friedrichs, who earlier sold Phantom Cyber to Splunk for $350M; CrowdStrike agreed to acquire Pangea for $260M.
Lakera (Check Point)
Real-time guardrails against prompt injection and jailbreaks for AI apps.
Lakera Guard sits between users and LLMs as a low-latency security layer, detecting and blocking direct and indirect prompt injection, jailbreaks, and system-prompt extraction across 100+ languages. Its models are trained on adversarial data from Gandalf, Lakera's prompt-injection game. Acquired by Check Point in 2025.
Worth knowing
Acquired by cybersecurity giant Check Point in 2025; its models train on attacks from its viral Gandalf game.
Lasso Security
End-to-end GenAI security: shadow-AI discovery, red-teaming, and runtime guardrails.
Lasso Security protects every LLM interaction across cloud and on-prem deployments, combining shadow-AI discovery, real-time threat detection, policy enforcement, and red-teaming with thousands of attack types. It deploys via gateway, API, or SDK to secure both internal LLM apps and employee use of third-party chatbots.
Worth knowing
Tel Aviv startup founded in 2023; raised a $6M seed led by Entrée Capital with Samsung Next.
Prompt Security (SentinelOne)
Runtime security for enterprise GenAI: shadow-AI visibility, data-leak and prompt-injection defense.
Prompt Security secures both employee use of GenAI tools and homegrown LLM applications, giving organizations visibility into shadow AI, blocking sensitive-data leakage, and preventing prompt injection in real time. Acquired by SentinelOne in 2025 and integrated into its Singularity platform.
Worth knowing
SentinelOne acquired Prompt Security in 2025 (~$250M) to anchor its GenAI/agent-security line within the Singularity platform.
HiddenLayer
AI security platform: model scanning, runtime defense, and automated red-teaming.
HiddenLayer's AISec Platform unifies AI supply-chain security, runtime detection and response, posture management, and automated red-teaming for generative, agentic, and predictive AI. Its Model Scanner inspects model files for malware and integrity issues, while AI Detection & Response monitors prompts and responses with deterministic classifiers.
Worth knowing
Won "Most Innovative Startup" at RSA Conference's 2023 Innovation Sandbox, then raised a $50M Series A led by Microsoft's M12 fund.
Protect AI (Palo Alto Networks)
End-to-end security for ML models, AI apps, and the AI supply chain.
Protect AI secures the AI/ML lifecycle from model selection through deployment and runtime: model scanning for serialization attacks, AI red teaming, posture management, and runtime protection. It also stewards open-source tools like ModelScan. Acquired by Palo Alto Networks in 2025 and integrated into the Prisma AIRS platform.
Worth knowing
Acquired by Palo Alto Networks in 2025 and folded into Prisma AIRS; stewards the open-source ModelScan and NB Defense tools.