Horizon3
Horizon3 helps security teams autonomously test attack surfaces at scale.
Horizon3.ai provides NodeZero, an autonomous penetration testing platform that continuously simulates real-world attacks without agents or human intervention. The SaaS solution safely executes attack chains across AWS, Azure, and Kubernetes infrastructure to show exactly how attackers compromise systems and what data they access. Organizations use it to verify security fixes in production and stay ahead of evolving threats at scale.
Problem solved
Security teams cannot manually pentest fast enough to keep pace with modern attack sophistication and cannot verify that fixes actually stop real attack chains.
Target customer
Fortune 500 enterprises, federal agencies, healthcare providers, and managed security service providers managing complex cloud and on-premises infrastructure at scale.
Founders
S
Snehal Antani
CEO & Co-Founder
Former CTO at Splunk and JSOC, CIO at GE Capital, holds 18 U.S. patents in data processing, cloud computing, and virtualization.
A
Anthony Pillitiere
Co-Founder
Limited public information available.
Funding history
Series D
$100M
June 2025
Led by NEA
· SignalFire, Craft Ventures, 9Yards Capital, Qualcomm Ventures
Series C
$40M
August 2023
Led by Craft Ventures
· SignalFire
Series B
$30M
2021
Led by SignalFire
· Unknown
Total raised:
$178.5M
Industries
Pricing
Custom pricing with elastic licensing model allowing concurrent pentests. Free trial available. Starts as self-service SaaS and scales to enterprise custom plans.
Notable customers
Over 3,000 organizations globally; named customers include North Carolina Electric Cooperatives, JTI Cybersecurity, Jerome's Furniture, plus Fortune 10 companies, federal agencies, and major healthcare providers.
Integrations
Tech Mahindra, FedHIVE, Vanguard Partner Program with global channel partners; FedRAMP High compliance for government integrations.
Tech stack
jQuery Migrate (JavaScript libraries)
jQuery (JavaScript libraries)
core-js (JavaScript libraries)
MediaElement.js (Video players)
RSS
Open Graph
DocuSign
WordPress (Blogs)
Site Kit (Analytics)
Zoominfo (Analytics)
Google Analytics (Analytics)
Linkedin Insight Tag (Analytics)
HSTS (Security)
Google Font API (Font scripts)
Nginx (Reverse proxies)
WP Rocket (Caching)
PHP (Programming languages)
Cloudflare (CDN)
6sense (Marketing automation)
Salesforce Marketing Cloud Account Engagement (Marketing automation)
MySQL (Databases)
Reddit Ads (Advertising)
Linkedin Ads (Advertising)
Google Tag Manager (Tag managers)
Divi (Page builders)
Salesforce (CRM)
Yoast SEO Premium (SEO)
Yoast SEO (SEO)
Amazon Web Services (PaaS)
WP Engine (PaaS)
CookieYes (Cookie compliance)
Google Optimize (A/B Testing)
Amazon SES (Email)
Greenhouse (Recruitment & staffing)
Website
Competitors
AttackIQ
Broader continuous threat exposure management platform; Horizon3 focuses specifically on autonomous pentesting execution.
SafeBreach
Similar attack simulation approach; Horizon3 differentiates through AI-driven autonomous execution without agents and faster compromise speed.
XM Cyber
Focuses on cross-platform attack path visualization; Horizon3 emphasizes safe real-attack execution and instant fix verification.
CyCognito
External attack surface management; Horizon3 covers both internal and external facing applications with deeper attack chain execution.
Why this matters: Horizon3 represents a fundamental shift in how enterprises validate security—from manual, reactive pentesting to continuous, autonomous proof of defense. With $178.5M raised, FedRAMP authorization, 3,000+ customers, and 100%+ YoY growth, the company is defining the autonomous pentesting category and capturing a portion of the $80B autonomous security market at scale.
Best for: Enterprise security teams and MSSPs needing continuous proof that their defenses stop real attack chains across cloud and hybrid infrastructure without manual effort.
Use cases
Continuous Compliance Verification for Federal Agencies
Federal agencies use NodeZero through the NSA's Continuous Autonomous Pentesting (CAPT) program to demonstrate ongoing security posture and FedRAMP High compliance. The platform autonomously validates that security controls remain effective without disrupting operations, meeting strict government compliance requirements.
Post-Patch Validation for Financial Institutions
Banks and financial services use NodeZero to verify that security patches actually stop attackers. After deploying a fix, teams run autonomous tests to confirm the attack chain is broken, reducing the window between patch deployment and validation from weeks to minutes.
MSSP Scale-Out for Managed Security Services
Managed security service providers use NodeZero's elastic licensing to run pentests across hundreds of client environments simultaneously. This allows them to scale their penetration testing services without hiring proportional security staff, improving margins while delivering faster assessments to clients.
Cloud Infrastructure Risk Assessment
Organizations managing complex AWS and Kubernetes deployments use NodeZero to continuously discover and chain together cloud misconfigurations and identity weaknesses. The platform shows how a single foothold becomes data exposure or domain compromise, prioritizing fixes by real business impact.
Alternatives
Manual Penetration Testing Services
Traditional approach is slower, more expensive per test, and creates business disruption; NodeZero is on-demand, production-safe, and can run unlimited tests.
Qualys VMDR
Vulnerability scanning and management; Horizon3 focuses on proving actual attack impact through real exploitation and chaining weaknesses across systems.
Rapid7 InsightVM
Vulnerability prioritization platform; Horizon3 goes beyond discovery to execute real attacks and verify fix effectiveness autonomously.
FAQ
What does Horizon3 do? +
Horizon3.ai provides NodeZero, an autonomous penetration testing platform that safely executes real attack techniques in production to show exactly how attackers compromise systems, what they access, and how to stop them. It learns from hundreds of thousands of autonomous tests and chains vulnerabilities together to demonstrate real business impact beyond individual CVEs.
How much does Horizon3 cost? +
NodeZero offers custom pricing with an elastic licensing model that scales with concurrent tests. A free trial is available to test the platform. Enterprise pricing is custom and based on organization size and testing scope.
What are alternatives to Horizon3? +
AttackIQ, SafeBreach, XM Cyber, and CyCognito are direct competitors in the autonomous security and attack simulation space. Traditional penetration testing services and vulnerability scanners like Qualys and Rapid7 serve overlapping but different use cases.
Who uses Horizon3? +
Over 3,000 organizations globally including Fortune 10 companies, federal agencies, healthcare providers, and managed security service providers. Named customers include North Carolina Electric Cooperatives, JTI Cybersecurity, and major financial institutions requiring proof of security posture.
How does Horizon3 compare to traditional penetration testing? +
Horizon3 executes real attacks autonomously without agents or humans, is safe to run in production, and can be run unlimited times on-demand. Traditional pentesting is slower, requires manual effort, creates business disruption, and produces point-in-time assessments rather than continuous validation.
What makes Horizon3 different from other attack simulation platforms? +
NodeZero learns from hundreds of thousands of production tests, outpacing the collective history of manual pentesting in a single year. It successfully compromises systems in minutes and chains vulnerabilities to demonstrate real business impact, while safely operating in production without persistent agents.
Does Horizon3 support cloud infrastructure? +
Yes, NodeZero covers AWS, Azure, and Kubernetes, and safely executes real attack paths across internally and externally facing applications, identity, and infrastructure.
Tags
autonomous pentesting
vulnerability management
attack simulation
cloud security
compliance
FedRAMP
continuous security testing
enterprise security