Strix

Autonomous pentesting that safely runs real attacks in production to find exploitable risk.

Horizon3.ai's NodeZero platform runs autonomous, production-safe penetration tests that chain real attacker techniques — credential abuse, misconfigurations, and exploitable CVEs — across internal, external, cloud, and hybrid environments without deploying agents. It shows exactly how an attacker could move and what they would reach, prioritizes fixes by impact, and re-tests to verify remediation. It is sold to enterprises and government as continuous attack-surface validation rather than a once-a-year manual engagement.

Autonomous AI pentesting that finds and exploit-validates vulnerabilities continuously.

XBOW is an autonomous offensive security platform that runs AI-driven penetration tests against web applications, validating every finding through real exploitation rather than flagging unconfirmed scanner noise. Founded by Semmle founder and GitHub Copilot creator Oege de Moor, it runs continuously instead of as a point-in-time engagement. Customers include Moderna, Samsung SDS, and Tyler Technologies; it raised a $120M Series C at a $1B+ valuation in 2025.

Automated security validation that emulates real attacks to prove exploitable exposures.

Pentera is an automated security validation platform that safely emulates real-world attacks across internal networks, external attack surfaces, and cloud to show which vulnerabilities are genuinely exploitable. It maps complete attack paths, prioritizes remediation by proven risk, and re-validates after fixes. Its 2026 'Pentera 8' release added Pentera Peer, an agentic AI interface that lets teams direct testing and investigate findings in natural language.