Pentera


Pentera is an American cybersecurity software company, specializing in automated security validation solutions. Originally founded as Pcysys in 2015, the company later rebranded as Pentera in 2021. Pentera has entities in the US, Germany, UK, Israel, Dubai, and Singapore.
WWW pentera.io𝕏 penterasecFB PenterasecIN penterasecurity

Products

Pentera develops automated security validation software designed to test cybersecurity defenses against real-world attack techniques. The platform enables organizations to identify exploitable vulnerabilities, validate security controls, and prioritize remediation to reduce cyber risk.
Pentera software automates testing across internal and external attack surfaces in on-premises and cloud environments, emulating techniques such as remote code execution, password cracking, and data exfiltration; it operates without endpoint agents, allowing use across typical enterprise systems and with security service providers.
The Pentera platform includes the following products:Pentera Core — Maps, tests, and validates the security controls of the organization’s internal network.Pentera Surface — Maps, tests and validates the security controls of the organization’s external-facing assets exposed to the internet.Pentera Cloud — Maps, tests, and validates the security controls across cloud-native infrastructures, emulating real-world attack techniques such as privilege escalation, credential exposure, and lateral movement to assess an organization’s cloud security posture.Pentera RansomwareReady — Validates the organization’s resilience against the latest known ransomware attacks by testing exploitation paths and security controls.Pentera Credentials Exposure — leverages data of real-world leaked credentials sources to identify compromised credentials from the dark web, encrypted storage, and internal sources to analyze potential attack pathways across the organization's internal and external attack surfaces.

Security Research Division

Pentera Labs is the company’s research division that monitors cyber threats, vulnerabilities, and attack techniques, publishes threat-intelligence findings, and feeds relevant insights into the Pentera platform; its reports are used by defenders to analyze and emulate emerging tactics. The team has disclosed zero-day vulnerabilities and contributed adversary tactics, techniques, and procedures to the MITRE ATT&CK framework.
Examples include research on a Fortinet authentication-bypass flaw, an Azure Functions XSS issue, the “135 Is the New 445” lateral-movement technique, and VMware vCenter zero-days, which were reported to vendors and subsequently addressed.

Funding

Pentera relies on venture capital. To date, the company has raised $190 million in primary funding:
  • Seed funding : Raised $5 million.
  • Series A : Raised $10 million from AWZ Ventures and Blackstone Group.
  • Series B : Raised $25 million from Insight Partners, AWZ Ventures, and Blackstone Group.
  • Series C : Pentera became a unicorn raising $150 million, out of which $75 million in primary, from K1 Investment Management, Evolution Equity Partners, and Insight Partners. This funding round brought Pentera's valuation to $1 billion.
  • Series D : Raised $60 million, led by Evolution Equity Partners, with participation from Farallon Capital Management.
On October 9, 2025, Pentera acquired DevOcean, an AI-remediation management platform.
On November 5, 2025, Pentera acquired EVA Information Security, an offensive security firm specializing in AI red teaming and pentesting.