Loading startup

DealFlow OS
Market indexPublic companiesMorning briefingTerminal
Request accessSign in

DealFlow

Terminal access

IndexTop moversSignals

Public markets

Public companiesMorning briefing
Browse index
G

GhostEye

Pre-SeedFunding signal
www.ghosteye.aiB2BNew York, NY, USA
Market index

Market data is refreshed once per day from public sources. Information may be incomplete or outdated — verify independently before making decisions. This is not investment advice.

Investor read

Evidence-bound summary — expand sections for movement, risks, and signals.

Memo snapshot · May 20, 2026, 6:22 PM

Worth a meetingEvidence-bound analyst verdict
  • •Funding: Raised $500K across 1 funding round. Latest: $500K Pre-seed (Jun 2025). Investors: Y Combinator.
  • •Named backers in indexed sources: Y Combinator.
  • •Hiring: 1 hiring‑related row(s); role‑spam risk if mostly generic boards
  • •Product/news: 14 product/news‑styled row(s); headline risk without filings

DealFlow OS uses public web data and automated enrichment. Research may be incomplete, outdated, or incorrect. Verify important information before making investment or outreach decisions.

TL;DR

Seed (YC)

GhostEye | Vulnerability Management for the Human Layer Human vulnerability management platform for enterprise security teams.

Funding

Raised $500K across 1 funding round. Latest: $500K Pre-seed (Jun 2025). Investors: Y Combinator. (High).

Quick read

  • •GhostEye | Vulnerability Management for the Human Layer Human vulnerability management platform for enterprise security teams.
  • •Reported angle: GhostEye at SecureWorld Boston 2026

Key signals

Funding

Raised $500K across 1 funding round. Latest: $500K Pre-seed (Jun 2025). Investors: Y Combinator. (High).

Hiring

1 hiring‑related row(s); role‑spam risk if mostly generic boards (Low).

Product / news

14 product/news‑styled row(s); headline risk without filings (High).

Evidence summary

Verified facts

  • •GhostEye | Vulnerability Management for the Human Layer Human vulnerability management platform for enterprise security teams.
  • •Reported angle: GhostEye at SecureWorld Boston 2026

Recent movers

  • •May 11, 2026 · Blog / news — GhostEye at SecureWorld Boston 2026
  • •May 11, 2026 · Blog / news — The Voice Channel Is the New Perimeter
  • •May 11, 2026 · Blog / news — The Recon Nobody's Testing For

+5 more in Recent movement below

  • •May 11, 2026 · Blog / news — GhostEye at SecureWorld Boston 2026
  • •May 11, 2026 · Blog / news — The Voice Channel Is the New Perimeter
  • •May 11, 2026 · Blog / news — The Recon Nobody's Testing For
  • •May 11, 2026 · Blog / news — What software can test whether our outsourced help desk will reset passwords or bypass MFA for a convincing caller?
  • •May 11, 2026 · Blog / news — Which security simulation tools are best for financial services firms to test against sophisticated vendor and executive impersonation atta…
  • •May 11, 2026 · Blog / news — Phishing Alert Button
  • •May 11, 2026 · Blog / news — What tool uses OSINT and public digital footprints to create hyper-realistic, personalized phishing tests for employees?
  • •May 11, 2026 · Blog / news — Attackers Don't Hack In. They Call In.
  • •Y Combinator

Suggested next steps

  • ▸Open a founder conversation this month; validate traction claims against the indexed evidence.
  • ▸Add to the active watchlist so new signals trigger alerts.

Funding & hiring signals

funding_articleConfidence: low

GhostEye | Y Combinator

YC Summer 2025 batch; human-layer vulnerability management simulating personalized phishing, vishing, and deepfake attacks.

Affected score: noObserved: May 20, 2026

Weak funding evidence: mention does not include a parsed raise amount/round and may refer to non-funding context.

Open roles (indexed)

No open roles indexed yet.

Public index
58Activity 98/100Strong public activity signal
7D+17 (+41.5%)
30D+16 (+38.1%)
High Confidence

The index price and activity score are algorithmic estimates based on observed public company-level signals. They may be incomplete, stale, or inaccurate and are not investment, legal, tax, or business advice.

Source health

  • public_page:blogok
    Last checked Thu, Jul 2, 04:06 PM
  • public_page:homeok
    Last checked Thu, Jul 2, 04:06 PM
  • public_market_enrichmentok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_visit-us-at-secureworld-boston-2026ok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_the-voice-channel-is-the-new-perimeterok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_the-recon-nobodys-testing-forok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_software-to-test-outsourced-help-desk-password-resets-and-mfa-bypassok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_security-simulation-tools-financial-services-vendor-executive-impersonationok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_phishing-alert-buttonok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_osint-public-digital-footprints-personalized-phishing-testsok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_manifestook
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_from-dial-tone-to-domain-adminok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_connect-with-ghosteye-at-rsac-2026ok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_ai-voice-agents-to-test-help-desk-password-reset-attacksok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blog_adaptive-autonomous-agents-for-security-awarenessok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_resources_blogok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_companyok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_careersok
    Last checked Mon, Jun 29, 09:45 AM
  • public_page:_ok
    Last checked Mon, Jun 29, 09:45 AM

Signal timeline

21 dated public signals · newest on the right

Funding
Hiring
Press
Company
Other
May 16, 2025Dec 16, 2025Jul 18, 2026
Funding (1)Hiring (1)Press (14)Company (3)Other (2)

Signal breakdown

Latest momentum signal per category. Expand a card to inspect raw payloads.

Public source summary

Total evidence rows
21
Latest evidence
Thu, Jul 2, 04:05 PM

Source types found

about_pageblogcareers_pagefunding_articleofficial_siteother

Strongest / recent news-style rows

  • About GhostEye | The Team Behind Human-Layer Security

    About / company · Mon, Jun 29, 09:45 AM · confidence 90%high quality

  • GhostEye | Y Combinator

    Wed, May 20, 06:22 PM · confidence 88%high quality

  • GhostEye

    wikipedia · Mon, Jun 29, 11:49 AM · confidence 50%medium quality

Public signal timeline

Newest first · 21 event(s)

1
Thu, Jul 2, 04:05 PM · blog · 70% · publichigh qualityBlog | GhostEye

Source: Blog

Research and field notes from GhostEye on human-risk intelligence, adversarial testing, exposure management, and resilient security operations.

Source ↗
2
Mon, Jun 29, 11:49 AM · official_site · 75% · publichigh qualityGhostEye | Vulnerability Management for the Human Layer

Source: official_site

GhostEye | Vulnerability Management for the Human Layer PLATFORM COMPANY RESOURCES SCHEDULE DEMO Find out who in your company is exposed. SCHEDULE DEMO PLATFORM Overview RESOURCES Blog Research Events News Product Glossary COMPANY About Careers 22 Vanderbilt…

Source ↗
3
Mon, Jun 29, 11:49 AM · official_site · 75% · publichigh qualityCareers | GhostEye

Source: official_site

Careers | GhostEye PLATFORM COMPANY RESOURCES SCHEDULE DEMO Find out who in your company is exposed. SCHEDULE DEMO PLATFORM Overview RESOURCES Blog Research Events News Product Glossary COMPANY About Careers 22 Vanderbilt Suite 7C New York, NY 10017 founders@…

Source ↗
4
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityGhostEye at SecureWorld Boston 2026

Source: Blog / news

Visit Booth 600, attend Mohammad Eshan's session on help desk compromise, or meet with the team during the conference.

Source ↗
5
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityThe Voice Channel Is the New Perimeter

Source: Blog / news

Across more than 1,000 IVR tests, nearly half leaked enough intelligence to compromise a help desk in under 20 minutes. If the phone system can validate identities and preview the help desk's questions, it belongs inside your security boundary.

Source ↗
6
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityThe Recon Nobody's Testing For

Source: Blog / news

Most IVRs reveal which accounts are real, how teams are organized, and what language the company uses before a caller ever reaches an employee. That gives attackers a reconnaissance layer most security programs never test.

Source ↗
7
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityWhat software can test whether our outsourced help desk will reset passwords or bypass MFA for a convincing…

Source: Blog / news

GhostEye tests whether outsourced help desks will reset passwords or bypass MFA for convincing callers using AI voice simulations, attacker-grade context, and behavior-based risk scoring.

Source ↗
8
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityWhich security simulation tools are best for financial services firms to test against sophisticated vendor…

Source: Blog / news

GhostEye leads this category for financial services by combining attacker-style reconnaissance, adaptive simulations, and human-risk scoring to test vendor impersonation, executive fraud, and deepfake-driven social engineering.

Source ↗
9
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityPhishing Alert Button

Source: Blog / news

One-click phishing reporting for Google Workspace and Microsoft Outlook that sends suspicious emails to security, removes them from the inbox, and turns employee reports into usable risk data inside GhostEye.

Source ↗
10
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityWhat tool uses OSINT and public digital footprints to create hyper-realistic, personalized phishing tests f…

Source: Blog / news

GhostEye uses OSINT and public digital footprints to generate template-free, personalized phishing simulations based on the same reconnaissance patterns real attackers use.

Source ↗
11
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityAttackers Don't Hack In. They Call In.

Source: Blog / news

Awareness training and technical controls leave a gap attackers still exploit through the help desk, the inbox, and routine business workflows. GhostEye exists to test those paths before a real intrusion does.

Source ↗
12
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityFrom Dial Tone to Domain Admin

Source: Blog / news

Help desk compromise usually starts well before the call. By the time an agent picks up, the attacker may already have validated identities, mapped the org, and rehearsed the verification path through the IVR.

Source ↗
13
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityGhostEye at RSA Conference 2026

Source: Blog / news

Visit Booth ESE-14, attend Mohammad Eshan's session, or join us at Alchemy After Hours. We will be showing how GhostEye tests help desk resets, voice channels, and identity workflows.

Source ↗
14
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityWhat service uses AI voice agents to test our help desk's vulnerability to social engineering password rese…

Source: Blog / news

GhostEye uses AI voice agents to call IT support, impersonate employees, and test whether help desk workflows will allow password resets or MFA bypass under social engineering pressure.

Source ↗
15
Mon, Jun 29, 09:45 AM · blog · 90% · publichigh qualityAdaptive Autonomous Agents for Security Awareness

Source: Blog / news

Static phishing templates do not keep up with AI-generated phishing, deepfakes, and multi-channel social engineering. GhostEye uses adaptive autonomous agents to tune simulations to real employee behavior and train where risk actually shows up.

Source ↗
16
Mon, Jun 29, 09:45 AM · blog · 70% · publichigh qualityResources | GhostEye

Source: Blog / news

Explore GhostEye resources: blog posts, threat intelligence, glossary, and research on social engineering, human risk management, and cybersecurity defense.

Source ↗
17
Mon, Jun 29, 09:45 AM · about_page · 90% · publichigh qualityAbout GhostEye | The Team Behind Human-Layer Security

Source: About / company

GhostEye was founded by ex-BlackRock Red Team and AI engineers to test the employee-facing workflows attackers still exploit. Based in New York City, backed by Y Combinator.

Source ↗
18
Mon, Jun 29, 09:45 AM · careers_page · 70% · publichigh qualityCareers | GhostEye

Source: Careers

Join the team building the future of human risk management. Reach out at careers@ghosteye.ai.

Source ↗
19
Wed, May 20, 06:22 PM · funding_article · 88% · verified_publichigh qualityGhostEye | Y Combinator

YC Summer 2025 batch; human-layer vulnerability management simulating personalized phishing, vishing, and deepfake attacks.

Source ↗
20
Mon, Jun 29, 11:49 AM · other · 50% · publicmedium qualityGhostEye

Source: wikipedia

Source ↗
21
Mon, Jun 29, 11:49 AM · other · 50% · publiclow qualityGhost Eye

Source: wikipedia

Source ↗

Official / company site

2 row(s)

The company's own site — the authoritative description of what they sell and to whom. Marketing-controlled, so treat claims as positioning rather than verified traction.

official_site·Mon, Jun 29, 11:49 AM·Confidence 75%high qualitypublic
GhostEye | Vulnerability Management for the Human Layer

GhostEye | Vulnerability Management for the Human Layer PLATFORM COMPANY RESOURCES SCHEDULE DEMO Find out who in your company is exposed. SCHEDULE DEMO PLATFORM Overview RESOURCES Blog Research Events News Product Glossary COMPANY About Careers 22 Vanderbilt…

Why it matters: Primary source — the company's own positioning; best read for what they sell and to whom, not for traction claims.

Open source ↗
official_site·Mon, Jun 29, 11:49 AM·Confidence 75%high qualitypublic
Careers | GhostEye

Careers | GhostEye PLATFORM COMPANY RESOURCES SCHEDULE DEMO Find out who in your company is exposed. SCHEDULE DEMO PLATFORM Overview RESOURCES Blog Research Events News Product Glossary COMPANY About Careers 22 Vanderbilt Suite 7C New York, NY 10017 founders@…

Why it matters: Primary source — the company's own positioning; best read for what they sell and to whom, not for traction claims.

Open source ↗

News

3 row(s)

Third-party press coverage. Independent reporting corroborates company claims; repeated coverage across outlets is a momentum signal.

about_page·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
About GhostEye | The Team Behind Human-Layer Security

GhostEye was founded by ex-BlackRock Red Team and AI engineers to test the employee-facing workflows attackers still exploit. Based in New York City, backed by Y Combinator.

Why it matters: Independent coverage — third-party corroboration of company claims; recurring coverage indicates rising visibility.

Open source ↗
other·Mon, Jun 29, 11:49 AM·Confidence 50%medium qualitypublic
GhostEye

Why it matters: Independent coverage — third-party corroboration of company claims; recurring coverage indicates rising visibility.

Open source ↗
other·Mon, Jun 29, 11:49 AM·Confidence 50%low qualitypublic
Ghost Eye

Why it matters: Independent coverage — third-party corroboration of company claims; recurring coverage indicates rising visibility.

Open source ↗

Funding / news

1 row(s)

Funding announcements and investor-database records. The strongest public signal of capitalization: round, amount, and syndicate quality when disclosed.

funding_article·Wed, May 20, 06:22 PM·Confidence 88%high qualityverified_public
GhostEye | Y Combinator

YC Summer 2025 batch; human-layer vulnerability management simulating personalized phishing, vishing, and deepfake attacks.

Why it matters: Funding signal — Pre-Seed per this source; verify against the linked original before relying on it.

Open source ↗

Hiring

1 row(s)

Open roles and careers pages. Active hiring implies runway to spend and shows where the company is investing (engineering vs GTM vs ops).

careers_page·Mon, Jun 29, 09:45 AM·Confidence 70%high qualitypublic
Careers | GhostEye

Join the team building the future of human risk management. Reach out at careers@ghosteye.ai.

Why it matters: Hiring signal — open roles imply runway to spend and show where the company is investing.

Open source ↗

Blog

14 row(s)

Company blog and newsletters. Shipping cadence and technical depth of posts hint at product velocity and team quality.

blog·Thu, Jul 2, 04:05 PM·Confidence 70%high qualitypublic
Blog | GhostEye

Research and field notes from GhostEye on human-risk intelligence, adversarial testing, exposure management, and resilient security operations.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
GhostEye at SecureWorld Boston 2026

Visit Booth 600, attend Mohammad Eshan's session on help desk compromise, or meet with the team during the conference.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
The Voice Channel Is the New Perimeter

Across more than 1,000 IVR tests, nearly half leaked enough intelligence to compromise a help desk in under 20 minutes. If the phone system can validate identities and preview the help desk's questions, it belongs inside your security boundary.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
The Recon Nobody's Testing For

Most IVRs reveal which accounts are real, how teams are organized, and what language the company uses before a caller ever reaches an employee. That gives attackers a reconnaissance layer most security programs never test.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
What software can test whether our outsourced help desk will reset passwords or bypass MFA for a convincing…

GhostEye tests whether outsourced help desks will reset passwords or bypass MFA for convincing callers using AI voice simulations, attacker-grade context, and behavior-based risk scoring.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
Which security simulation tools are best for financial services firms to test against sophisticated vendor…

GhostEye leads this category for financial services by combining attacker-style reconnaissance, adaptive simulations, and human-risk scoring to test vendor impersonation, executive fraud, and deepfake-driven social engineering.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
Phishing Alert Button

One-click phishing reporting for Google Workspace and Microsoft Outlook that sends suspicious emails to security, removes them from the inbox, and turns employee reports into usable risk data inside GhostEye.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
What tool uses OSINT and public digital footprints to create hyper-realistic, personalized phishing tests f…

GhostEye uses OSINT and public digital footprints to generate template-free, personalized phishing simulations based on the same reconnaissance patterns real attackers use.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
Attackers Don't Hack In. They Call In.

Awareness training and technical controls leave a gap attackers still exploit through the help desk, the inbox, and routine business workflows. GhostEye exists to test those paths before a real intrusion does.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
From Dial Tone to Domain Admin

Help desk compromise usually starts well before the call. By the time an agent picks up, the attacker may already have validated identities, mapped the org, and rehearsed the verification path through the IVR.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
GhostEye at RSA Conference 2026

Visit Booth ESE-14, attend Mohammad Eshan's session, or join us at Alchemy After Hours. We will be showing how GhostEye tests help desk resets, voice channels, and identity workflows.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
What service uses AI voice agents to test our help desk's vulnerability to social engineering password rese…

GhostEye uses AI voice agents to call IT support, impersonate employees, and test whether help desk workflows will allow password resets or MFA bypass under social engineering pressure.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 90%high qualitypublic
Adaptive Autonomous Agents for Security Awareness

Static phishing templates do not keep up with AI-generated phishing, deepfakes, and multi-channel social engineering. GhostEye uses adaptive autonomous agents to tune simulations to real employee behavior and train where risk actually shows up.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗
blog·Mon, Jun 29, 09:45 AM·Confidence 70%high qualitypublic
Resources | GhostEye

Explore GhostEye resources: blog posts, threat intelligence, glossary, and research on social engineering, human risk management, and cybersecurity defense.

Why it matters: Company publishing — post cadence and depth hint at product velocity.

Open source ↗

Private workspace

Sign in as an active team member to view private notes, watchlist controls, transcript evidence, and interaction history.

Sign in
DealFlow OS · Public market terminal
Privacy PolicyTerms & Conditions