# Gecko Security

> AI-powered security engineer that detects and fixes business logic and multi-step vulnerabilities with low false positives.

Gecko Security is an AI-driven security platform designed to detect and remediate vulnerabilities that traditional SAST tools often miss. Instead of relying solely on abstract syntax trees, Gecko builds a semantic understanding of your codebase to uncover business logic flaws and multi-step vulnerabilities. The system validates exploits, models threats, and generates actionable proof-of-concepts with suggested fixes. Gecko integrates with CI/CD workflows, provides a PR bot for real-time feedback, and supports SOC 2 compliant private/self-hosted deployments for enterprises. Founded in 2024 and backed by Y Combinator, Gecko is built by a team with backgrounds in intelligence, Interpol, and applied AI research.

## Features
- Semantic AI code analysis for business logic flaws and multi-step vulnerabilities
- Threat modeling with simulated attack paths and exploit validation
- Proof-of-concept generation and AI-driven code fixes
- CI/CD integration with PR bot for real-time vulnerability feedback
- Lower false positives (~20%) compared to traditional SAST tools
- SOC 2 compliance and private/self-hosted deployment support
- Supports both public and private repositories
- Automated code remediation suggestions

## Integrations
GitHub, GitLab, Bitbucket, CI/CD systems via PR bot, Custom API integrations, Self-hosted environments

## Platforms
WEB, API

## Pricing
Open Source, Free tier available

## Version
1.0

## Links
- Website: https://www.gecko.security
- Repository: https://github.com/Gecko-Security
- EveryDev.ai: https://www.everydev.ai/tools/gecko-security