Horizon3.ai’s mission is to help organizations find and fix attack vectors before they can be exploited. The company aims to provide an attacker’s perspective on a company’s security posture. Its goal is to be the most trusted autonomous pentesting platform in the industry. Horizon3.ai seeks to empower organizations to proactively defend their infrastructure through autonomous security solutions. The company’s larger vision is to build an autonomous defense platform.
Horizon3.ai has a strong market reputation, with customers praising its ability to identify and provide proof of exploitable vulnerabilities. The company is seen as a valuable partner in improving security posture. Its platform, NodeZero, is noted for being user-friendly and effective at discovering previously unknown issues. The company is also recognized for its rapid growth and adoption in the mid-market and federal sectors.
Offerings, Capabilities, and Integrations
Horizon3.ai provides an autonomous penetration testing platform, known as NodeZero, designed to help organizations continuously find, prioritize, and remediate exploitable vulnerabilities. The company’s core offering is a Software-as-a-Service (SaaS) platform that conducts autonomous pentesting to identify weaknesses across a company’s internal, external, and cloud infrastructure. Horizon3.ai’s competitive edge lies in its ability to mimic the behavior of a human attacker, chaining together vulnerabilities, misconfigurations, and compromised credentials to reveal true attack paths and their potential impact. This autonomous approach allows for continuous testing, providing a more scalable and timely alternative to traditional, manual penetration tests. The platform is agentless, simplifying deployment and reducing operational friction. NodeZero integrates with other security tools, such as Splunk, to ingest pentest results and merge them with existing data and workflows. The company also offers a public API for automation and integration into CI/CD pipelines.
Products and Services
Horizon3.ai’s flagship product is the NodeZero platform, an autonomous pentesting solution. The platform’s services are delivered through a variety of operations:
- Internal Pentesting: This service assesses an organization’s internal network from the perspective of an attacker who has already gained initial access. It identifies vulnerabilities within on-premises and cloud infrastructure, identity and access management systems, and data infrastructure.
- External Pentesting: This service discovers and tests an organization’s public-facing assets to identify exploitable vulnerabilities from an external attacker’s viewpoint.
- Cloud Pentesting: This capability focuses on an organization’s cloud environments, including Amazon Web Services (AWS) and Azure, to find vulnerabilities, and identity and access management (IAM) weaknesses.
- Active Directory (AD) Password Audit: This service specifically audits Active Directory to uncover weak, breached, and reused passwords.
- Rapid Response: A service that provides early, actionable intelligence on emerging zero-day and N-day vulnerabilities. The Horizon3.ai Attack Team researches new threats and adds tests to the NodeZero platform, often before a public patch or CVE is issued.
- Phishing Impact Testing: This service assesses the potential real-world consequences of a successful phishing attack by using compromised credentials to explore the environment.
Target Customers
Horizon3.ai targets a broad range of customers across various industries, including enterprise, government, education, healthcare, manufacturing, and supply chain. The company’s solutions are designed for organizations of all sizes, from small-to-midsized businesses (SMBs) to large enterprises. Horizon3.ai specifically addresses the needs of security and IT teams, including security analysts, system administrators, and DevOps engineers. The company also has a strong focus on the public sector, including State, Local, and Education (SLED) organizations, which often face budget and staffing constraints. Managed Security Service Providers (MSSPs) are another key customer segment, with a significant portion of Horizon3.ai’s customers being serviced through its partner ecosystem. These customers benefit from NodeZero’s ability to automate security validation, enabling them to continuously assess their security posture without the need for extensive in-house offensive security talent.
Cloud Integrations and Marketplaces
Horizon3.ai’s NodeZero platform offers integrations for both Amazon Web Services (AWS) and Microsoft Azure, enabling comprehensive security assessments across cloud and hybrid environments.
- AWS Integration: The NodeZero platform integrates with AWS to discover and remediate exploitable vulnerabilities. It enumerates cloud resources and assets to identify attack paths, including privilege escalation and lateral movement within the AWS infrastructure. This integration supports the assessment of AWS-native, on-premises, and hybrid environments.
- Azure Integration: NodeZero provides cloud-native pentesting for Microsoft Azure environments. It can utilize Azure-native attack techniques and pivot between cloud and on-premises systems to simulate complex attack paths. Horizon3.ai provides documentation for configuring an Azure Enterprise Application to facilitate single sign-on with the NodeZero portal.
Horizon3.ai has a presence on the following cloud marketplaces:
- AWS Marketplace: The NodeZero platform is available for purchase directly from the AWS Marketplace. This allows customers to procure the solution instantly and potentially leverage AWS Enterprise Discount Program (EDP) funds for the purchase.
- Pax8 Marketplace: Horizon3.ai’s NodeZero platform is also available on the Pax8 Marketplace, which serves managed service providers (MSPs).
Horizon3.ai is not listed on the Microsoft Azure Marketplace or the Google Cloud Marketplace.
Key People
- Co-Founder, CEO: Snehal Antani.
- Chief Revenue Officer: Matthew Hartley.
- Chief Legal Officer: Jill Passalacqua.
- Head of Engineering: Chris Corbett.
- Vice President of Finance: Timothy Quock.
- Vice President of Revenue Operations: Drew Mullen.
- Vice President of Customers: Ellen Sundra.
- Vice President of Product: Erick Dean.
- Vice President of People: Torie Runzel.
- Co-Founder, Founding Engineer: Anthony Pillitiere.
Key Facts
- Headquarters Location: San Francisco, CA.
- Number of Employees: 150-250
- Annual Revenue: $30 million – $50.7 million.
- Parent Company: None
- Subsidiary Companies: HORIZON3 AI UK LTD.
- Publicly Listed: No.
Analyst Recognition
Analyst groups recognize Horizon3.ai for its contributions to offensive security capabilities.
- Gartner has included Horizon3.ai in publications related to automated security testing. Horizon3.ai was named a Representative Vendor in the 2025 Gartner® Market Guide for Adversarial Exposure Validation (AEV). Previously, Gartner identified Horizon3.ai as a Sample Vendor in the 2021 Hype Cycle™ for Security Operations within the Autonomous Penetration Testing and Red Teaming category.
- Forrester Consulting was commissioned by Horizon3.ai to conduct a Total Economic Impact™ (TEI) study in October 2023. This study analyzed the financial impact and return on investment of using the NodeZero platform.
Based on the available information, there are no specific recognitions for Horizon3.ai from IDC or Everest Group.
