Why we break things.
Annual pentesting is structurally broken: a snapshot of a system that changes every day. We're building the autonomous offense that keeps pace with how software actually ships.
Offense, at the speed of engineering
Security teams are outnumbered. Code ships continuously; pentests happen once a year. Scanners flood the gap with false positives that nobody has time to triage. We started Rift to close that gap the only way that scales — autonomous agents that find, exploit, and verify real vulnerabilities continuously, while respecting the processes teams already trust. Not to replace the humans, but to give them ten times the reach.
A rift is a fault line — the hidden crack that widens into a breach, and the way in an attacker is already hunting for. We find yours first, prove it's real, and hand it to you before it's exploited. The purple is the other half of the thesis — red-team offense and blue-team defense, fused into one.
The humans behind the agents
In offensive security, the team's credibility is the product's credibility. Ours comes from real CVEs, real research, and real time on the keyboard.
Founder & CEO
Ex-offensive security lead; published vulnerability researcher.
Founder & CTO
Built autonomous agent systems; prior security-tooling exits.
Head of Security Research
Long CVE record; regular speaker on offensive security.
Head of Engineering
Scaled high-throughput, safety-critical infrastructure.
Proof or it didn't happen
We don't ship maybes — internally or to customers. Claims come with evidence.
Respect the defender
We slot into existing processes instead of demanding teams rebuild around us.
Publish in the open
Researchers keep their names and their CVE credits. The work speaks for itself.
Our investors
Placeholder — real investor names land here.
Come build the future of offense.
We're hiring security researchers, agent engineers, and the people who bring it to market.