Huskeys Exits Stealth With $8M to Fix WAF Management Using Agentic AI
Huskeys exits stealth with $8M seed funding for an agentic AI platform that sits on top of existing WAFs. The thesis: WAF enforcement works, but nobody can manage the rules at scale. Early customers include TikTok and Hugging Face.
The problem is not the WAF itself
Huskeys emerged from stealth this week with $8 million in seed funding. The pitch: WAF enforcement works fine. The management layer on top of it is what is broken.
Security teams across enterprises are too afraid to touch their WAF rules. The risk calculation is simple. Adjust a rule and you might block real customers and lose revenue. Leave it alone and you accept whatever gaps exist. Most teams pick the second option.
"In almost every call, we hear the same thing: I don't want to touch it," says co-founder Itai Gafni.
Paying vendors to configure their own product
The result is a dependency loop. Companies using Cloudflare pay Cloudflare extra to configure the WAF correctly. Same pattern with Akamai, AWS WAF, and others. The tool exists. The organizational capacity to operate it does not.
WAF rule management requires deep knowledge of application behavior, traffic patterns, and threat signatures. All three change constantly. Static rule sets become a liability as applications ship new features and attackers adapt.
Control plane, not replacement
Huskeys is not building a WAF. It is building what it calls an Edge Security Management platform. A control plane that sits on top of existing WAF infrastructure from Cloudflare, AWS, Akamai, and others. The idea: organizations already paid for enforcement infrastructure. They need something to actually run it.
The company uses agentic AI for the management layer. Traffic analysis, rule tuning, and orchestration of remediation. Early customers include TikTok, Merlin Entertainments, and Hugging Face. The investor base includes over 30 CISOs investing personal capital.
WAFplanet take
This is the most interesting WAF startup thesis in a while. Every WAF vendor sells you a better firewall. Huskeys sells you a way to actually use the one you already have. That is a fundamentally different value proposition.
The "don't touch it" problem is real. We see it in the ModSecurity and Coraza world too. Our own CRS regex research showed that automated rule tuning can dramatically improve detection while reducing false positives. Huskeys is applying the same principle at the enterprise edge.
The $8M seed with CISO investors (not just VC money) is a credibility signal worth noting. Whether the agentic AI layer delivers on the promise remains to be seen. But the diagnosis is correct: the WAF is not the problem. The control plane is.
