{"id":97640,"title":"Hex Security: AI that Hacks before Attackers do","tagline":"AI agents that find security vulnerabilities in your apps \u0026 infrastructure","body":"We're[ @Huzaifa Ahmad](https://www.linkedin.com/in/ahmadhuzaifa012/),[ @Ahmad Khan](https://www.linkedin.com/in/ahmad-khan-b6584b225/), and[ @Prama Yudhistira](https://www.linkedin.com/in/pramayudhistira/) ([@Hex Security](https://hex.co/), W26). **We built AI agents that automate penetration testing.**\n\n![uploaded image](/media/?type=post\u0026id=97640\u0026key=user_uploads/507733/e0895a51-0f41-4ecb-b7d2-6e10257676ee)\n\n**In the past few weeks, our agents found critical vulnerabilities in dozens of YC companies (ones you’ve heard of):** SQL injection exposing billions of records, demonstrated a PoC worm that could infect entire networks, gained access to hundreds of codebases, and more. Through this, we have prevented an estimated $3B+ in potential damages (based on exposed record counts and IBM's Cost of a Data Breach benchmarks).\n\n[🎥 Watch our launch video](https://youtu.be/kDWcB4GjzeA)\n\n**The problem:** Companies lose $10T+ annually to preventable vulnerabilities, yet most pentest once a year because it's manual, expensive, and slow. By the time you get the PDF, your codebase has changed.\n\nAnd that gap is widening. In September 2025, Anthropic caught Chinese state-sponsored hackers using AI to run 80-90% of an attack autonomously — thousands of requests per second, speeds no human team could match. The attackers have AI now, and defenders need it too.\n\n![uploaded image](/media/?type=post\u0026id=97640\u0026key=user_uploads/2947591/e8003001-ba20-41f7-9c96-11922c602f4b)\n\n**What we built:** AI agents that run continuous penetration tests against your apps and infrastructure. They find vulnerabilities, chain exploits together, and deliver actionable findings with reproduction steps — at a fraction of the cost of traditional pentesting.\n\n![uploaded image](/media/?type=post\u0026id=97640\u0026key=user_uploads/2947591/0f00074f-e1d6-4ef2-bc4e-9466839fab36)\n\nWant to see what we find in your systems? Book a discovery call: [hex.co](http://hex.co)\n\nVisit us at [hex.co](http://hex.co) | [founders@hex.co](mailto:founders@hex.co)","slug":"POq-hex-security-ai-that-hacks-before-attackers-do","created_at":"2026-02-09T00:33:20.433Z","updated_at":"2026-05-25T03:42:02.857Z","total_vote_count":301,"url":"https://www.ycombinator.com/launches/POq-hex-security-ai-that-hacks-before-attackers-do","share_image_url":"https://www.ycombinator.com/media/?type=post\u0026id=97640\u0026key=user_uploads/507733/e0895a51-0f41-4ecb-b7d2-6e10257676ee","company":{"id":31174,"name":"Hex Security","slug":"hex-security","url":"https://hex.co?utm_source=bookface\u0026utm_medium=referral\u0026utm_campaign=hex-security-profile","logo":"https://bookface-images.s3.amazonaws.com/small_logos/814cf30167622bfb5c6d35815a24f51d91529f3b.png","batch":"Winter 2026","industry":"B2B","tags":[],"search_path":"https://bookface.ycombinator.com/company/31174"}}