About
OFFENSAI
Our mission is simple: provide cloud security testing at scale, so every organization can stay ahead of attackers.
Learn more about OFFENSAIWe're redefining cloud security testing
How OFFENSAI Began
OFFENSAI was founded in 2023 by AWS security engineers and cloud security leaders who had spent years seeing the same problem inside modern environments: cloud moves fast, but security validation does not.
Every day, cloud environments change. New services are deployed, permissions shift, integrations expand, and trust relationships evolve. Security teams are flooded with alerts, scan results, posture findings, IAM issues, and exposed resources, yet still struggle to answer the question that matters most:
What is actually exploitable right now?
Traditional approaches were not built for the speed or complexity of the cloud. Red teaming was valuable, but infrequent and expensive. Scanners generated volume, but not proof. Teams were asked to prioritize risk without enough evidence.
That gap is why OFFENSAI exists.
We built OFFENSAI to help organizations continuously validate real cloud exposure, not just surface more findings. Using autonomous adversary techniques, the platform tests cloud environments the way real attackers operate: chaining weaknesses together, adapting to context, and uncovering the attack paths that matter most.
OFFENSAI was created to give defenders something better than theoretical severity scores: evidence, impact, and clear remediation.
Why we exist
Cloud security teams do not need more noise. They need proof.
Most tools can tell you something looks risky. Far fewer can show whether that exposure is actually reachable, exploitable, and capable of leading to real business impact in your environment.
OFFENSAI exists to close that gap.
We help organizations move from static findings to continuous validation, from theoretical severity to real exploitability, from fragmented alerts to full attack-path evidence, and from generic prioritization to impact-based remediation.
Our approach is built around a simple belief: security teams should be able to measure real results, not rely on assumptions.
What makes OFFENSAI different
Cloud-native only
Built for modern cloud environments, not retrofitted from legacy pentesting or on-prem tooling.
Real exploit validation
We do not stop at finding misconfigurations. We validate whether they can be turned into real attacker paths.
Impact over theory
We prioritize findings based on exploitability, blast radius, detection difficulty, and business impact.
Continuous, traceable testing
Everything is tied to runs, findings, resources, and history so teams can understand what was tested, what changed, and what needs action.
Detection and evasion validation
We test not only prevention, but whether realistic cloud attack activity can blend into normal operations and bypass detection.
Meet the team
Karen Nguyen
Founder & CEO
Dragos Stanescu
Founder & CTO
Ioan Criste
AI Offensive Security Researcher
Deeksha Dasari
Director of Product Management
Joana Santos
Head of Marketing
Eduard Agavriloae
Founder & Director R&D
Karen Nguyen
Founder & CEO
Dragos Stanescu
Founder & CTO
Ioan Criste
AI Offensive Security Researcher
Deeksha Dasari
Director of Product Management
Joana Santos
Head of Marketing
Eduard Agavriloae
Founder & Director R&D
Karen Nguyen
Founder & CEO
Dragos Stanescu
Founder & CTO
Ioan Criste
AI Offensive Security Researcher
Deeksha Dasari
Director of Product Management
Joana Santos
Head of Marketing
Eduard Agavriloae
Founder & Director R&D
Karen Nguyen
Founder & CEO
Dragos Stanescu
Founder & CTO
Ioan Criste
AI Offensive Security Researcher
Deeksha Dasari
Director of Product Management
Joana Santos
Head of Marketing
Eduard Agavriloae
Founder & Director R&D
Karen Nguyen
Founder & CEO
Dragos Stanescu
Founder & CTO
Ioan Criste
AI Offensive Security Researcher
Deeksha Dasari
Director of Product Management
Joana Santos
Head of Marketing
Eduard Agavriloae
Founder & Director R&D
The principles that guide everything we do
Proof over posturing
We focus on what can be demonstrated, validated, and measured.
Real risk over theoretical noise
We prioritize the exposures attackers could actually use and the impact they could actually create.
Cloud-first thinking
Cloud has its own attack surface, trust model, pace of change, and failure modes. Our work starts there.
Safety and integrity at full speed
We move fast, responsibly, and with customer trust at the center.
Research is part of the product
Original offensive research should improve the way customers test and strengthen their defenses.
We help teams move, not just monitor
A finding is only useful if it drives action.
Shift happens.
Be ready when it does.
See how OFFENSAI's cloud security testing platform helps teams move from exposure detection to controlled validation, technical evidence, and risk-based prioritization.