SEWORKS is a company of white-hat hackers who did something unusual with their talent: they bottled it into AI products that pen-test, harden, and defend software before the real attackers get a turn.
Above: the SEWORKS wordmark, the plainest possible signature for a company whose whole job is finding what you overlooked. There is no logo for paranoia, so this will have to do.
There is a genre of person who is very good at breaking into things, and a much smaller genre of person who is very good at breaking into things and then telling you, politely, how they did it and how much you should pay to make it stop. Min Pyo Hong is the second kind. He spent roughly 25 years as a white-hat hacker, reached the finals of the DEFCON Capture the Flag competition - the closest thing hacking has to the Olympics - five years in a row, and previously built and sold a mobile security company called SHIFTWORKS. In late 2012 he started SEWORKS in Seoul, and in 2013 he moved it to San Francisco, on the reasonable theory that the customers were closer to Silicon Valley than to anywhere else.
The premise of SEWORKS is a little uncomfortable when you say it out loud, which is part of why it works. Security software is mostly sold as defense - firewalls, scanners, the digital equivalent of stronger locks. SEWORKS sells the opposite point of view. Its tagline is "see your software the way an attacker does," and the products are all attempts to answer the question a defender is least equipped to answer on their own: how would someone actually break this? It turns out that is a genuinely hard thing to know about your own code, because you built the code to work, not to fail, and the failure modes are exactly the parts you weren't thinking about.
"Pentoma delivers results of web penetration tests much faster than human pen testers."
Penetration testing has a structural flaw as a business: it does not scale. A good pen tester is a scarce, expensive human who is booked out for months, and every engagement starts more or less from scratch. If your security process depends on that person, what you have is not a moat but a queue. SEWORKS looked at the queue and did the sensible thing - it tried to automate the mechanical 80% of the work and reserve the humans for the interesting 20%. The result, launched at Mobile World Congress in 2018, is Pentoma, an AI-driven penetration-testing service running on the company's proprietary GAMAN engine. Pentoma pokes at web applications, APIs, source code, and now AI systems the way an attacker would, then has human experts validate what it finds so the report is something an auditor will actually accept.
This is the whole thesis of the modern AI wave compressed into one product. The frontier is not replacing human creativity; it is replacing the parts of expert work that were always mechanical and tedious. Finding an SQL injection vector for the ten-thousandth time is not creative. Deciding which of a hundred findings actually matters still is. SEWORKS drew the line there.
Pentoma is the headline act, but SEWORKS runs a small catalog. AppSolid, its older product, hardens mobile apps against reverse engineering and tampering - built on the honest and slightly grim assumption that your app is running on a phone the attacker fully controls. LeakJar answers a question almost no company can answer about itself: how many of your users are logging in with a password that has already leaked in some breach dump somewhere? Using k-anonymity, it screens credentials at sign-up, login, and reset without ever handling the raw passwords. And because security work eventually collides with compliance, SEWORKS became a Drata Authorized Reseller and now packages SOC 2 and ISO 27001 certification support, pairing automated evidence-gathering with real pen tests to compress the timeline to a few months.
None of this is magic, and SEWORKS mostly avoids pretending it is. What it sells is a point of view - that the best way to defend software is to first attack it honestly - packaged so that a company without a five-time DEFCON finalist on staff can rent one anyway. The advisory board, which includes a former CIA senior intelligence officer and the founder of ZecOps and Zimperium, is there for the same reason: when your product is offensive security, you want people who have done the hard version of the job.
SEWORKS sells offense as a service. Here is what each product does and who it is for.
AI-powered pen testing on the GAMAN engine. Agentic discovery plus deterministic replay plus human validation, across web apps, APIs, source code, and AI systems.
Launched 2018Protects Android and iOS apps against reverse engineering, tampering, and code theft - assuming the attacker already owns the device.
Since 2015Screens users against leaked-credential databases using k-anonymity - at sign-up, login, and reset - so reused, breached passwords stop being a way in.
Launched 2022As a Drata Authorized Reseller, SEWORKS pairs automated evidence-gathering with real pen tests to reach certification in roughly 3-6 months.
Since 2023A white-hat hacker with 25+ years of experience and a five-time consecutive DEFCON CTF finalist. Before SEWORKS he founded and exited SHIFTWORKS, a mobile antivirus and MDM company. He started SEWORKS in Seoul in late 2012 and relocated it to San Francisco in 2013.
Advising the company: Andrew Kim (former senior intelligence officer, CIA), Zuk Avraham (founder of ZecOps and Zimperium), and Perry Ha (Draper Athena).
Min Pyo Hong establishes SEWORKS in late 2012.
The team of ethical white-hat hackers relocates to chase enterprise growth in Silicon Valley.
SaaS-based mobile app hardening and security scanning arrives for developers worldwide.
Strategic investors - Qualcomm Ventures, SoftBank Ventures Korea, Samsung Ventures - bring total funding to $12M.
AI-driven penetration testing on the GAMAN engine launches at Mobile World Congress.
API-first breached-credential defense goes live.
Becomes a Drata Authorized Reseller for SOC 2 and ISO 27001.
Coverage grows to APIs, source code, and AI systems - with human validation intact.
Series A (2016) backed by Qualcomm Ventures, SoftBank Ventures Korea, Samsung Ventures, Smilegate Investment, and Wonik Investment Partners.
A member of NVIDIA's program for AI startups, and an AWS Technology and Public Sector partner.
The AI engine is named GAMAN; Pentoma is a play on "pentest" plus automation - hacker humor, lightly applied.
Among 100+ enterprises using SEWORKS, alongside Kolon, Barbri, Flitto, and Matthews.
SEWORKS turns offensive-security expertise into AI-powered products: AI penetration testing (Pentoma), mobile app hardening (AppSolid), breached-credential defense (LeakJar), and SOC 2 / ISO 27001 compliance support.
Min Pyo Hong, a white-hat hacker with 25+ years of experience and a five-time DEFCON CTF finalist, who previously founded and exited the mobile security company SHIFTWORKS.
Pentoma is SEWORKS' AI-powered penetration testing service, built on the proprietary GAMAN engine. It combines automated attack discovery with human expert validation across web apps, APIs, source code, and AI systems.
SEWORKS serves 100+ enterprise clients worldwide, including Sendbird, Mercari, Kolon, Barbri, Flitto, and Matthews.
About $12M total, including a Series A around 2016 backed by Qualcomm Ventures, SoftBank Ventures Korea, Samsung Ventures, and Smilegate Investment.