GhostEye

Based in New York City, GhostEye is a cybersecurity startup that provides human-layer vulnerability management by continuously mapping employee exposure and generating personalized, AI-driven social engineering attacks. The platform functions as a security testing tool rather than a traditional training system, automatically deploying realistic phishing emails, scam calls, text messages, and deepfakes to evaluate workforce resilience. Targeting Fortune 500 enterprise customers, the company delivers quantified human risk scores that track corporate security posture over time and provide instant remediation upon failure. Operating with a team of three employees, the startup is backed by Y Combinator as a participant in the accelerator program's Summer 2025 batch under primary partner Andrew Miklas. GhostEye was founded in 2025 by Mohammad Eshan, former Red Team Lead at BlackRock and offensive operations engineer at MITRE, alongside former BlackRock AI engineer Charles Antoine Malenfant.

High-Level Overview

GhostEye is a human-breach simulation platform that continuously tests an organization’s human security layer by simulating realistic social engineering attacks, including phishing, voice, and SMS campaigns. Unlike traditional breach and attack simulation tools that focus mainly on technical vulnerabilities, GhostEye emphasizes the *human element*—tracking employee social media and public profiles in real-time to identify attack vectors and craft adaptive, AI-driven campaigns that evolve with organizational changes and current events. This approach helps organizations proactively identify who is most vulnerable to social engineering and continuously validate their human security controls, reducing reliance on periodic penetration tests and enhancing overall security posture[1][2][3].

As a portfolio company, GhostEye builds an AI-powered platform serving enterprises and security teams aiming to strengthen their human defense layer against social engineering attacks. It solves the problem of unseen human vulnerabilities that traditional security stacks miss by simulating full attack chains from initial contact to system compromise. The platform’s continuous, adaptive testing model provides actionable insights and targeted training, helping organizations transform employees into an active defense layer. GhostEye’s growth momentum is driven by increasing awareness of social engineering risks and demand for continuous, realistic security validation beyond technical controls[1][2][3].

Origin Story

GhostEye was founded by a multidisciplinary team of security and AI experts, including a CEO with experience in BlackRock’s Red Team and a CTO with a background in AI engineering at BlackRock. The idea emerged from recognizing that traditional breach and attack simulation tools overlooked the human factor, which is often the weakest link in cybersecurity. Leveraging expertise in offensive cyber operations (including experience at MITRE) and AI, the founders developed a platform that continuously simulates human-targeted attacks using real-time organizational intelligence and AI agents. Early traction came from demonstrating the platform’s ability to eliminate compliance theater by providing continuous, realistic breach simulations at a fraction of the cost of traditional penetration testing[3].

Core Differentiators

• Human-Centric Simulation: Focuses on social engineering tactics that bypass technical defenses, simulating the full attack path from initial contact to data exfiltration.
• AI-Powered Adaptive Campaigns: Automatically creates and evolves phishing, voice, and SMS campaigns based on current events, employee behavior, and organizational changes.
• Continuous, Always-On Testing: Unlike quarterly or point-in-time assessments, GhostEye continuously monitors and tests the human layer.
• Real-Time OSINT Monitoring: Scans social media, public databases, and organizational data to identify emerging attack vectors before attackers do.
• Actionable Risk Scoring and Training: Tracks individual employee risk scores and delivers targeted training to strengthen human defenses.
• Multidisciplinary Expertise: Founded by experts in offensive cyber operations and AI, with patented multi-agent evaluation frameworks[1][2][3].

Role in the Broader Tech Landscape

GhostEye rides the growing trend of *human-centric cybersecurity* and *continuous security validation*. As social engineering remains a top attack vector, organizations increasingly recognize that technical controls alone are insufficient. The timing is critical due to the rise of AI-driven attacks and the expanding attack surface from remote work and digital transformation. Market forces favor platforms that provide continuous, adaptive, and realistic testing of human vulnerabilities, moving beyond traditional compliance checklists and periodic penetration tests. GhostEye influences the broader ecosystem by setting a new standard for integrating AI, OSINT, and behavioral analytics into breach simulation, helping organizations build resilient human defenses and reducing the overall risk of successful cyberattacks[1][2][3][4].

Quick Take & Future Outlook

GhostEye is well-positioned to capitalize on the increasing sophistication of social engineering threats and the demand for continuous, AI-driven security validation. Future trends shaping its journey include advances in AI for attack simulation, deeper integration with organizational data sources, and expanding capabilities to simulate emerging attack vectors like deepfake voice phishing. As regulatory and compliance pressures grow, GhostEye’s platform could become essential for organizations seeking to prove real-world resilience against human-targeted attacks. Its influence is likely to expand as it helps shift cybersecurity culture toward proactive, continuous human risk management, complementing technical defenses and reshaping how enterprises approach security validation[1][2][3].