Escape

Active

Offensive security for the teams that are 100x outnumbered

Winter 2023Founded 202029 peopleNew York, NY, USA

escape.tech ↗LinkedIn ↗X ↗GitHub ↗Crunchbase ↗See on the Idea Map B2B momentum

About

Replace legacy scanners and manual offensive security processes with AI agents that discover, test, and remediate directly in your engineering workflows.

From their website

as of Jun 7, 2026escape.tech ↗

SaaSSubscription

Escape offers an AI-powered offensive security platform that combines asset discovery, business-logic aware testing, and AI-assisted remediation to secure modern applications, APIs, and infrastructure. It emphasizes scalable, integrated offensive security that operates within engineering workflows to replace legacy scanners and manual processes.

Escape provides a platform with: 1) Attack Surface Management (ASM) to discover and validate exposure across code-to-cloud assets, including APIs and infrastructure; 2) Business-logic-aware DAST that tests workflows and multi-step processes at the business logic level with modern authentication integrations; 3) AI Pentesting that scales manual penetration testing using agentic, graph-context driven attack reasoning with proof of exploitability; 4) AI-assisted Remediation delivering code-level remediation guidance and automated suggestions integrated into IDEs; 5) End-to-end automation and CI/CD integration with programmable APIs, CLI, and server workflows; 6) Compliance automation offering one-click audit-ready reports for multiple frameworks. The platform emphasizes real-time findings delivery to asset owners and continuous security across the development lifecycle.

Who it’s for: Security teams in medium to large organizations needing scalable, AI-assisted offensive security integrated into engineering workflows.

Features

Attack Surface Management for API and app exposure
Business-logic-aware DAST testing
AI Pentesting with multi-step attack reasoning
AI-assisted remediation with real code suggestions
End-to-end automation via API/CLI/SDK
CI/CD and security gate integration
Continuous compliance validation and audit-ready reports

Hiring/traction mentions implied by 2000+ security teams onboarded and multiple product/integration features; notable customer testimonials included

Founders · 2

Tristan KalosFounder

Berkeley

Building Escape (YC W23) to help AppSec and Engineering teams secure their Single Page Apps, APIs, and Microservices. Previously ML engineer at source{d} and researcher at UC Berkeley. Passionate about solving complex business problems with creative technology or user experiences.

LinkedIn ↗

Antoine CarossioFounder

Apple

Berkeley

🇫🇷 • Engineer • UC Berkeley • Apple

LinkedIn ↗X ↗

Launch

Launched on Y Combinator · Feb 2023

View launch post ↗

We help companies create Fast, Secure, and Reliable GraphQL APIs

Escape offers a GraphQL security testing platform that tests APIs for vulnerabilities using a feedback-driven API exploration approach to achieve deep code testing and high coverage. It targets developers and teams building GraphQL APIs and provides a free security report for users, including YC community access.

From the original launch (Feb 2023) — may be outdated.