Gecko Security Analysis: $500K Raised
What is Gecko Security?
Gecko Security is an AI-native application security platform that scans code, logic, and infrastructure for exploitable vulnerabilities. It emphasizes business logic flaws, multi-step attack paths, and verified fixes, rather than pattern-only static analysis. Y Combinator lists the company as active, founded in 2024, in the Fall 2024 batch, with 2 employees and customers reporting fewer false positives.
Location
120 Madeira Ave, Coral Gables, Florida 33134, United States
Employees
1-10
Founded
2024
Revenue
$4M
Investors
- Rebel Fund
- Ritual Capital
- Y Combinator
Product Features & Capabilities
- AI-powered offensive security, business logic flaw detection, multi-step vulnerability analysis, low false positives, threat modeling, automatic fixes, continuous security, vulnerability management, testing on multiple repositories, GitHub Bot and CI/CD integration.
Pricing
- Free Open Beta:
- Testing on up to 3 repositories
- Basic offensive security AI engine
- Basic AI fixes & exploits
- Python, JS/TS language support
- Codebases < 20K lines
- Enterprise Plan:
- Testing on unlimited repos
- Advanced offensive security AI engine
- Advanced AI fixes & exploits
- Multi-repo scanning
- GitHub Bot and CI/CD integration
How much Gecko Security raised
Seed - $500K
December 4, 2024Lead Investor: Y Combinator
Who are the founders of Gecko Security
JJ
Jeevan Jutla
Co-Founder and CEO
AM
Artemiy Malyshau
Co-Founder
Business Model
Fixed pricing model with free and enterprise plans for revenue generation.
Market Focus
Gecko Security primarily focuses on the cybersecurity industry, specifically providing AI-powered offensive security solutions that identify vulnerabilities in codebases.
Competitors Overview
Gecko Security competes in the application security market with several notable companies, each offering unique advantages:
-
Invicti: Formerly known as Netsparker, Invicti provides automated application security testing that integrates into the software development lifecycle (SDLC). Its dynamic and interactive scanning methods allow for comprehensive vulnerability detection, making it suitable for teams looking to automate security tasks.
-
Kiuwan Code Security: This tool automates code scanning to identify vulnerabilities and complies with strict security standards like OWASP. Kiuwan integrates well with DevOps tools and offers flexible licensing options, making it a good choice for teams of all sizes.
-
GlitchSecure: Specializing in continuous security testing for SaaS companies, GlitchSecure combines expert methodologies with automated assessments, ensuring ongoing security posture evaluation.
-
Acunetix: Known for its automated web application security testing, Acunetix supports complex applications and can detect a wide range of vulnerabilities. Its integrated vulnerability management capabilities help enterprises prioritize and manage threats effectively.
-
ObjectSecurity BinLens: This tool offers advanced binary analysis to detect vulnerabilities in IT/OT/ICS devices and software, focusing on uncovering potential zero-day vulnerabilities and memory-safety breaches.
-
Trustwave: A globally recognized cybersecurity leader, Trustwave offers managed detection and response (MDR), managed security services (MSS), and penetration testing, focusing on reducing cyber risk.
-
Darktrace: Known for its AI-driven cybersecurity solutions, Darktrace learns from unique business data in real time to detect and respond to threats, emphasizing protection against known, unknown, and novel cyber threats.
-
SonicWall: With over 30 years of experience, SonicWall specializes in real-time breach detection and prevention solutions, serving small to medium-sized businesses and enterprises globally.
Notable differences include Trustwave's strong focus on managed services, Darktrace's unique AI-driven approach, and SonicWall's extensive experience and partner network.
See something that needs updating? Suggest edits to this profile.