Truffle Security has raised a $25 million Series B funding round led by Intel Capital and Andreessen Horowitz, with participation from Abstract, Lytical Ventures, and several industry leaders, including Casey Ellis, Emilio Escobar, and Haroon Meer. The company continues to build momentum behind its flagship open-source project TruffleHog, which detects and remediates exposed machine identities and credentials across codebases and cloud environments.
The new investment will support the expansion of TruffleHog Enterprise, the company’s enterprise secrets detection and remediation platform, and accelerate innovation focused on protecting non-human identities. The company has introduced TruffleHog GCP Analyze, a new product capability that provides organizations with immediate visibility into leaked Google Cloud service accounts. This capability enables teams to quickly determine what a compromised identity can access, evaluate the potential impact, and prioritize remediation activities more efficiently.
Enterprises across technology, retail, and financial services are facing increased security challenges as credentials proliferate through multi-cloud environments, generative AI coding tools, and third-party API integrations. According to Verizon’s 2025 Data Breach Investigations Report, credential misuse remains one of the primary causes of security incidents. Truffle Security reported more than double revenue growth over the past year and now serves a customer base spanning mid-market organizations and Fortune 1000 enterprises.
Truffle Security will use the new capital to expand go-to-market operations and customer support resources, while continuing to extend its NHI protection capabilities across additional major cloud platforms, including AWS and Azure. The company’s open-source footprint remains a key growth driver, boasting over 23,000 GitHub stars, 15 million downloads, and more than 250,000 daily runs globally.
The introduction of TruffleHog GCP Analyze marks the beginning of broader context-aware analysis offerings. The feature helps security teams determine the impact of exposure, act on the highest-risk secrets, and reduce response times. Traditionally, this level of assessment required extensive manual investigation. Truffle Security’s platform now delivers it automatically, enabling organizations to minimize credential-driven breach risk throughout the software development lifecycle more effectively.
KEY QUOTES:
“As AI transforms how software is built, the security surface is expanding just as quickly. Truffle Security is tackling one of the most urgent challenges in this new era, which is protecting codebases from secret exposure at scale. We’re thrilled to back the team as they continue to define what modern software security looks like in the age of AI.”
Martin Casado, General Partner at Andreessen Horowitz
“In the era of coding co-pilots and third-party APIs, compromised credentials remain one of the leading causes of data breaches, making credential protection a critical safety measure for enterprise developers and security teams. With the introduction of TruffleHog GCP Analyze and this latest round of funding, Truffle Security accelerates its mission to make secrets management frictionless, secure, and comprehensive, positioning the company to confidently address broader IAM and NHI market opportunities.”
Nick Washburn, Senior Managing Director at Intel Capital
“Secrets are one of the most likely ways that organizations get compromised. You don’t need fancy exploits if the secrets are right there in the clear.”
Travis McPeak, Security Engineer at Anysphere
“Dylan and the Truffle Security gang have long led the way in secret detection. This financing marks their expansion beyond finding leaked secrets to making secrets manageable across the full development lifecycle. They’re making secrets easy and leaked secrets obvious.”
Casey Ellis, Founder of BugCrowd
“We are so excited and humbled to grow our community and technology into solving more and more pain points non-human secrets can cause – expanding beyond analyzing secret leaks into secret inventory and productivity tooling.”
Dylan Ayrey, CEO and Founder of Truffle Security
