YC Security Startups Analysis

Crosslayer Labs

Detects impersonation attacks on websites and APIs through "outside-in" DNS/BGP/TLS monitoring.

BeeSafe AI

Fraud prevention platform targeting trust-based attacks like pig butchering scams.

Hex Security

AI agents running continuous penetration tests 24/7 using reinforcement learning.

Protent

Real-time video intelligence identifying escalating incidents.

Kestrel AI

AI-native cloud incident response platform with self-healing capabilities for Kubernetes.

Veria Labs

AI agents discovering complex vulnerabilities in software and crypto systems.

Multifactor

Authentication and authorization for agentic systems with fine-grained controls.

ContextFort

Chrome extension providing visibility into AI browser agent activities and data leakage prevention.

GhostEye

Simulates personalized attacks across email, voice, SMS, and deepfakes for security awareness.

Alter

Zero-trust identity platform for AI agents with parameter-level verification.

Probo

Compliance automation handling documentation, controls, and audit evidence for SOC 2 / ISO 27001.

Casco

Autonomous security testing for web apps, APIs, and AI systems.

Theorem

Training models to accelerate program verification for secure code.

MindFort

Autonomous AI agents finding and exploiting web application vulnerabilities.

Cotool

Agentic platform automating alert triage and investigation for security teams.

Golf

Visibility and control platform for shadow AI and AI agent usage in organizations.

Better Auth

TypeScript authentication framework with bot and fraud detection. Open source.

Tinfoil

Privacy-preserving AI workload deployment using confidential computing hardware.

Haleum

AI monitoring communication channels for fraud and insider threat detection.

SubImage

Infrastructure mapping tool providing asset visibility and relationships.

Gecko Security (F2024)

AI vulnerability finder simulating attacks and verifying exploitability.

winfunc (S2024)

AI hacker autonomously finding and patching code vulnerabilities.

Clearly AI (S2024)

Automates security and privacy reviews using AI in minutes.

ZeroPath (S2024)

Developer tool detecting and fixing vulnerabilities autonomously.

Unbound (S2024)

Security platform focusing on privacy and data protection.

Aedilic

Open-source software detecting AI-generated images and deepfakes.

Delve

AI compliance platform for SOC 2, HIPAA, ISO 27001, GDPR frameworks.

PromptArmor

Security for generative AI applications, preventing prompt injection.

Superagent

Red team testing and safety validation for AI applications.

CompliantLLM (W2023)

Detects data leaks into third-party GenAI tools used by employees.

Metalware (S2023)

Firmware security solutions with automated binary fuzzing for critical infrastructure.

Corgea (S2023)

Autonomous application security finding and generating code fixes.

Roundtable (S2023)

API detecting bots and verifying human identity invisibly.

Variance (W2023)

Unified API for safety technologies combining fraud and security tools.

Escape (W2023)

AI-powered API security discovering vulnerabilities including business logic flaws.

Adri AI (W2023)

Monitors AI vendor infrastructure to prevent proprietary data misuse.

Infisical (W2023)

Open-source secrets management with versioning, rotation, and audit logging.

Repacket (W2023)

Employee endpoint protection blocking phishing and data leaks.

Matano (W2023)

Modern cloud-first SIEM built on a cost-effective Security Data Lake.

Corridor (Seed, 2025 — backed by Conviction)

AI-native code security. Instead of scanning code after it is written, Corridor embeds security at the code generation stage — securing AI-assisted development in real time. Founded by Jack Cable and Ashwin Ramaswami (both ex-CISA), with Alex Stamos (ex-Facebook CISO) as CSO. $5.4M seed round. Early customers include Cursor, Mercury, and GreyNoise.

Overwatch (S2022)

Real-time intelligence for fraud, security, and risk decision-making.

Oneleet (S2022)

All-in-one compliance and security automation combining tools and expertise.

Reality Defender (W2022)

Deepfake detection platform flagging fraudulent content and users.

Cinder (W2022)

Digital safety orchestration and automation at scale.

Bunkyr (W2022)

Hardware-secured API enabling password recovery for encrypted data.

Firezone (W2022)

Zero Trust Access VPN using least-privileged access policies. Open source.

Strac (W2022)

Agentless data discovery, classification, and DLP across SaaS and cloud.

Agency (W2022)

Multi-party compliance platform for SOC 2, ISO 27001, CMMC standards.

Munily (W2022)

Community access control and visitor management via app and tablet.

Why: Companies are legally required to buy this. SOC 2, ISO 27001, HIPAA — it is not optional. Vanta charges $10–25k/year. Drata, Secureframe, same range. 5 YC companies in this space = proven demand.

The DHH play:

• A self-serve, no-BS compliance tool at $200–500/month for small startups who cannot afford Vanta.
• No sales team. No enterprise features.
• Just "get SOC 2 done."
• People already search for "cheap Vanta alternative."

Why: GhostEye does this at YC. KnowBe4 was acquired for $4.6 billion. Every company with >10 employees needs this for compliance.

The DHH play:

• Dead simple phishing simulation.
• Send fake phishing emails to your team, get a report.
• $50–100/month per company.
• No AI agents, no deepfake simulation. Just the basics that check the compliance box.

Why: Infisical proved the model with open source. Many companies want something even simpler — just a .env manager with audit logs and rotation.

The DHH play:

• Simple hosted secrets manager.
• $20/month per team.
• No enterprise bells and whistles.

Why: Not an AI platform. A productized service: I will scan your app and send you a report for $500. Use existing tools (Burp Suite, nuclei, etc.) + your own skill + AI to deliver fast.

The DHH play:

• No product to maintain. Pure margin.
• Sell on LinkedIn.
• Deliver in 24–48h.
• $500–2000 per engagement.