This round is no longer accepting investments, but hundreds just like it are live now.

Log In


Cyber Security Testing

How do you know an organization's network is secure? rThreat is a cybersecurity platform that leverages a new approach to proactively allow users to continuously test their cyber security tools, leveraging the same real-world tactics that hackers deploy in current cybersecurity threats - like recent ransomware attacks on schools, hospitals, and suppliers across the globe.* rThreat currently has an in-market product with distribution to direct customers and channel partners.

This Reg CF offering is made available through StartEngine Capital, LLC. This investment is speculative, illiquid, and involves a high degree of risk, including the possible loss of your entire investment.

$33,219.36 Raised


The rThreat difference: rThreat enables companies and organizations to stay a step ahead of hackers by providing a solution that allows them to run continuous tests of their cyber security tools and security teams, with real threats, to understand how threats could impact them before hackers do.

Market need: rThreat believes cybersecurity impacts almost all areas of risk in the world today, and we are only as safe as our weakest link, and the overall cyber industry that is projected to reach $43Billion+ by 2026, would seem to agree.** From an rThreat perspective, the need for a platform that emulates the threats currently in use is already proven.

Future Vision: rThreat is continually evolving. We recently launched a new and improved version of rThreat which added support for additional operating systems, faster response times, and additional validation features.

*Information about recent cyber security threats from the LA Times and NPR (sourcesource)

**Information about the Managed Security Services Market (source)


The rThreat platform enables organizations to understand and address the effectiveness of their cyber security architecture before hackers do real damage

rThreat provides a proactive approach to cybersecurity by running, real-world threat attack emulations, acting as a “live fire” or continuous readiness exercises to test the efficiency and effectiveness of an organization's security architecture & policies. 

Our team of researchers monitors the dark web and criminal underground, the ‘internet’ of hackers, to ensure the rThreat platform has the most current examples of malicious risk that may be leveraged against an organization. This helps to secure the organization in real-time through an automated SaaS platform using the Zero Trust security guidelines, now mandated to be followed by the US Federal Government (source).



Defensive cybersecurity measures often lag behind cutting-edge hackers

Cybersecurity is a complex industry. The rapidly evolving threat landscape and the frequency of changes in the IT architecture and in security create a constant stream of new challenges, which are almost impossible to keep on top of. 

Although change has always been a constant in both IT and cybersecurity, COVID-19 and the associated rise of remote work have accelerated business digitization and security adaptations. Everything is connected today.

Mandatory bi-annual penetration tests are not enough 

Ransomware and cybersecurity breaches are a serious business operation concern. ‘Oh Wow! That's what it really looks like?!’ is one of the responses we have heard from investors when demoing rThreat on their network. Traditional, manual penetration tests which ensure the effectiveness of cyber defenses are expensive, time-consuming, and limited in scope. Mandatory bi-annual Penetration Tests of cybersecurity systems are not enough to ensure that organizations are protected from hackers. Our systems need “to meet or exceed the standards and requirements for cybersecurity,” as President Biden’s executive order noted. Sharing any amount of data on the internet means an increased need to implement a Zero Trust strategy.

( source source source source source)


Proactively test the cybersecurity tools and teams against the most recent threats 

rThreat is a cloud-based platform that  provides  proactive cybersecurity testing with the most current and past ransomware and all types of malicious files so organizations can test their systems in a secure environment. With so many defensive security tools on the market, rThreat wants to proactively ensure that no matter which of those tools an organization chooses, it’s protecting them fully. Our proactive approach follows Ben Franklin’s timeless phrase, “An ounce of prevention is worth a pound of cure.”    

How it works

  • Direct sales: Businesses can buy licenses on an annual or multi-year basis.
  • Channel partners: We have a worldwide network of Managed Security Service Providers that utilize rThreat technology and receive a commission for each license sold or conduct rThreat powered consulting projects.


Tackling a market headed towards $366B 

The cybersecurity market is projected to reach $366B+ by 2028,

and there are an estimated 4,800 vendors for security defensive tools. rThreat is unique because it tests using real threats, and can validate the impact on over 4,800 defensive tools. Real-world hackers don’t attack with simulated versions of malware.  If you’re wearing a bulletproof vest, you’d want to know that it had been tested for actual bullets. We’re applying that theory straight to your security systems.

rThreat has greater return on investment compared to manual security assessments. We have an internal research group that monitors cybersecurity trends and the tactics, techniques, and procedures used by hackers, known as Advanced Persistent Threat groups. The platform is designed for easy use, making it possible for consulting groups to run rapid testing if needed.


From research to rollout, we’re ready to launch version 2

After 2 years of executing in stealth, honing our research and development, our patent pending platform is live. We’ve successfully distributed our software through direct customers and channel partners. We recently rolled out version two of rThreat, which features an updated dashboard and support for Linux in addition to Windows operating systems.


The Market is Changing and We Believe rThreat is Positioned to Take Advantage

We can see that the cyber security industry as a whole is growing at a rapid pace and ongoing testing is quickly becoming a requirement. rThreat uses real threats to test. Ransomware attacks and other hacks are becoming daily headline news items and organizations need a way to stay a step ahead of hackers, rThreat provides this. 

- Our product is live with enterprise customers and Manager Security Service Providers using rThreat.

- The Federal Government (Cybersecurity & Infrastructure Security Agency) and cybersecurity insurance firms are now requiring organizations to test their systems.  rThreat is perfectly placed to take advantage of these new requirements.

- Our highly experienced team of advisors see the value and vision of rThreats approach to security validation.

- We believe we are early movers into security testing space with a unique approach. 


4050 Willowbrook Lane
Bellingham, WA 98229

How do you know an organization's network is secure? rThreat is a cybersecurity platform that leverages a new approach to proactively allow users to continuously test their cyber security tools, leveraging the same real-world tactics that hackers deploy in current cybersecurity threats - like recent ransomware attacks on schools, hospitals, and suppliers across the globe.* rThreat currently has an in-market product with distribution to direct customers and channel partners.


Hugo Sanchez Chavez
Hugo Sanchez Chavez
CEO, President & Director

Hugo is an international sales professional with over 12 years of experience building teams and sales programs, with proven success in managing complex, enterprise-wide global sales. Consistently exceeding sales quotas and well versed at the evangelistic sales process in order to penetrate new markets. Strong ability to foster relationships with senior executives in Fortune 500 organizations. Intuitive sense to hunt for and uncover opportunities within new and existing target accounts.

Jesus Garcia Correa
Jesus Garcia Correa
CTO, Vice President & Director

Jesus has spent his career working for a variety of Cyber Security companies including F5 Networks, FireEye and most recently RSA as a senior systems engineer. He graduated from National Autonomous University of Mexico with a degree in Computer Science. Jesus is an active member of the cyber security community and has published articles in many cyber security publications including HAKIN9 and ExploitDB covering new methodologies, techniques, tactic and the creation of specific malware.

Peter Nelson
Peter Nelson
VP of Sales Operations & Director

Peter has spent his career in operations at a number of startups. He was one of the early employees at zulily which went from launch to IPO in 4 years with 1.5 billion in revenue. During his time at zulily Peter managed procurement, transportation and lead the effort to open operations in China. He also has experience at a digital marketing firm focusing on metrics driven marketing, a port operations focused startup and has a passion for the cyber security space.

Melvin D. De Jong

Melvin D. De Jong

CFO, Corporate Secretary, Treasurer & Director

Mel is a seasoned financial management professional having been employed in a range of organizations from start-up to Fortune 100. He excels at creating cost effective and efficient administrative work units. He is semi-retired but still enjoys working with early-stage start-up businesses. Mel is a proud Vietnam War Veteran and earned his MBA and professional certification on the GI Bill.

John Kindervag

John Kindervag

Zero Trust Advisor

John is best known for creating the revolutionary Zero Trust Model of Cybersecurity. He is currently the Senior Vice President of Cybersecurity Strategy at ON2IT Cybersecurity he has also been the field CTO of Palo Alto Networks and spent eight and one-half years at Forrester Research where he was a Vice President and Principal Analyst on the Security and Risk Team. John is considered one of the world’s foremost cybersecurity experts. 

John is an advisor for rThreat and works 1 hour per week for rThreat.

Kate  Kuehn

Kate Kuehn

GTM Advisor

Kate's passion is guiding innovative security and technology teams. She is currently the Senior Vice President of Alliance's at vArmour. She thrives on empowering employees while creating organizations around strategic and often complex market requirements. Security and emerging technologies are part of her DNA, and love’s leading the charge both internally and externally in the market to develop new ways to enhance our world through them. 

Kate is an advisor for rThreat and works 1 hour per week for rThreat.

Igor Volovich

Igor Volovich

CISO Advisor

Igor is a global CISO, strategist, advisor, author, speaker, and global cybersecurity leader with 20+ years of service to the world's largest private and public-sector entities, Fortune 100 firms, and US policy, legislative, and regulatory communities. As a startup mentor, he has helped over 30 early-stage technology firms create and navigate the roadmap from the proverbial paper napkin of an idea to their first purchase order and beyond, advising founder teams on product, positioning, GTM, and competitive strategies. 

Igor is an advisor for rThreat and works 1 hour per week for rThreat.

Josh Stephens

Josh Stephens

GTM Advisor

Josh has been in the technology sector for over 25 years and has helped lead some very successful companies through hyper growth, IPOs, and other meaningful exits. He is deeply passionate about helping the companies that he’s involved with maximize their potential and about helping the people that he works with to achieve their own vision of success. 

Josh is an advisor for rThreat and works 1 hour per week for rThreat.

Brad LaPorte

Brad LaPorte

GTM Advisor

Brad is a former top-rated Gartner Analyst for cybersecurity, veteran US Cyber Intelligence, and product leader at Dell, IBM, and several startups. He is a partner at High Tide Advisors providing Go-To-Market consulting and advisory services to investment firms and cybersecurity startups. He has spent most of his career on the frontlines fighting cyber criminals and advising top CEOs, CISOs, CIOs, CxOs as well as other thought leaders on how to be as efficient and effective as possible. 

Brad is an advisor for rThreat and works 1 hour per week for rThreat.


Jan 12, 2023
$10k - $1.07M
Common Stock
Class B Non-Voting Common Stock

Maximum Number of Shares Offered subject to adjustment for bonus shares

*Maximum Number of Shares Offered subject to adjustment for bonus shares. See Bonus info below.

Investment Incentives and Bonuses*

StartEngine 10% Owners Bonus

Super Early Bird - First 72 hours 10%

Early Bird - First 7 Days 5%

Invest $10,000 and receive an additional 6% bonus shares.

Invest $25,000 and receive an additional 8% bonus shares.

Invest $50,000 and receive an additional 10% bonus shares.

*In order to receive perks from an investment, one must submit a single investment in the same offering that meets the minimum perk requirement. Bonus shares from perks will not be granted if an investor submits multiple investments that, when combined, meet the perk requirement. All perks occur when the offering is completed.

*Investors will receive the highest single bonus they are eligible for among all bonuses based on the amount invested or time of offering elapsed (if any). Eligible investors will also receive the Owner’s Bonus in addition to the aforementioned bonus.

The 10% StartEngine Owners' Bonus

rThreat, Inc. will offer 10% additional bonus shares for all investments that are committed by investors that are eligible for the StartEngine Crowdfunding Inc. OWNer's bonus.

This means eligible StartEngine shareholders will receive a 10% bonus for any shares they purchase in this offering. For example, if you buy 100 shares of Class B Non-Voting Common Stock at $1.89 / share, you will receive 110 Class B Non-Voting Common Stock shares, meaning you'll own 110 shares for $189. Fractional shares will not be distributed and share bonuses will be determined by rounding down to the nearest whole share.

This 10% Bonus is only valid during the investor's eligibility period. Investors eligible for this bonus will also have priority if they are on a waitlist to invest and the company surpasses its maximum funding goal. They will have the first opportunity to invest should room in the offering become available if prior investments are canceled or fail.

Investors will receive the highest single bonus they are eligible for among the bonuses based on the amount invested and time of offering elapsed (if any). Eligible investors will also receive the Owner’s Bonus in addition to the aforementioned bonus.

Irregular Use of Proceeds

The Company might incur Irregular Use of Proceeds that may include but are not limited to the following over $10,000: Vendor payments. Salary payments made to one’s self, a friend or relative. Any expense labeled “Travel and Entertainment”.


Article Image
USA Today

10 software companies pioneering their markets

Article Image
Panther Labs

The Future of Cyber Attacks — Insights From Hugo Sanchez

Article Image
Cyber Defense Magazine

Our Cyber Defenses Need to Be Battle-Tested to Withstand Future Threats

Article Image
PR Newswire

Zero Trust Creator and ON2IT SVP John Kindervag added to the rThreat Advisory Board

Article Image
Geek Wire

WTIA announces 26 startups chosen for fourth edition of Founder Cohort Program



rThreat is Proud to Welcome Javier Gonzalez as our Newest CISO Advisor

Javier is a senior executive with over 25 years in the information and cyber security space with a passionate focus on technology, strategy, market share expansion, sales growth, and merger & acquisitions. Javier possesses strong acumen inclusive of architecting and executing strategic plans and cyber disruption & innovation roadmaps.  

With a demonstrable leadership record centered in efficacy, he has successfully strategized a wide arrange of initiatives in the areas of governance, risk, and compliance, cyber security due diligence, and disruptive transformation. He enjoys vast experience as Chief Technology and Information Security officer in industries ranging from High Tech, Healthcare, Financial, and government; leading efforts to driving cost down, improving tech life cycle, and enhancing quality & efficiency of the security posture.

Presently, he serves as the Mexico Chief Information Security Officer for a top 20 Global Bank. Javier Gonzalez | LinkedIn 


We've Got Another Big Announcement!

rThreat is proud to welcome Manuel de la Torre as our newest marketing advisor. 🎉

Manuel is the founder and CEO of IA interactive, one of the first independently-owned digital agencies in Mexico with offices across Latin America. Manuel possesses over 25 years of experience in the technology sector with an emphasis on digital transformation and cybersecurity. He has worked with global heavyweights such as Unilever, Mattel, and L’Oreal uplevel their digital and marketing growth. His passion for entrepreneurship, hacker mentality, and expertise working with C level leaders drives his ability to craft meaningful user experiences and powerful messaging that resonates with clients on all levels.

Our team is excited to work with Manuel. His wealth of knowledge will empower us to continue spreading rThreat's mission and delivering the best threat emulation experience to customers and partners alike. Welcome to the team! Manuel de la Torre | LinkedIn 


rThreat Attends Cyber Security Conference in São Paulo, Brazil

The rThreat team recently attended ‘Mind the Sec '22’ in São Paulo, Brazil.  It was a great event and highlights that cybersecurity is a global problem.  It’s always helpful to hear from our customers and partners that real attack emulations provide a realistic perspective on their cyber security.  Lots more to come in the rapidly expanding Brazilian market.

See more on LinkedIn


Advisor Igor Volovich on Breach & Attack Emulation

rThreat is revolutionizing the field of Breach & Attack Emulation. What does it mean? Validating your security controls in real-time, holistically, and realistically, to rapidly expose exploitable attack paths and gaps in your defenses.

Oh, we already do pentests, you say? Good for you. Are you running them continuously, at the push of a button, fully automated, without fielding a red or purple team of expensive experts? Are you able to reduce the time to discover these exploitable control deficiencies to minutes instead or hours and days, or worse yet, having to wait for a breach to realize where the hidden gaps had been the entire time?

There is a better way, and rThreat is delivering it today as a consumable service.

And now, you can become a part of the Breach & Attack Emulation revolution by supporting rThreat's mission as an investor through their open crowdfunding campaign on StartEngine.

I am proud to be a member of the rThreat Board of Advisors, and I invite you to join us in helping fuel their growth and scale as they bring their innovation to market.

See the full post on LinkedIn


rThreat Live on StartEngine

We’re excited to have our campaign up and running on StartEngine.

Since launching our platform in 2020, the rThreat team has worked tirelessly to usher in the next generation of security validation technology. Over the last two years we’ve worked with many partners, advisors, and customers to implement feedback and enhance our platform capabilities. Thanks to your help we successfully launched rThreat version 2.0 earlier this year.
We are now working to take our mission to the next level. Innovation has and always will be at the forefront of our mission, and we’re looking for like-minded folks who want to go on this journey with us. Become an investor to help bring next-gen real attack emulation to the market.

This is an excellent opportunity for small investors who normally don't get the front-end opportunity in funding companies. Be a part of making the cyber world a safer place.

Owners bonus
Stack Owner's Bonus & Rewards!

Members get an extra 10% shares in addition to rewards below!


Multiple investments in an offering cannot be combined to qualify for a larger campaign perk. Get rewarded for investing more into rThreat.



Orion Torcellini

5 months ago

I think a real disconnect here is an inability for most people to understand the importance of preventative security, and also precisely what it is your company looks to do. How would you adjust future marketing materials to emphasize more on why this service is worth investing in? I find your companies idea and purpose to be fantastic, and can only believe there is an information gap occurring.




Cancel anytime before 48 hours before a rolling close or the offering end date.



We want you to succeed and get the most out of your money by offering rewards and memberships!


Your info is your info. We take pride in keeping it that way!


Invest in over 200 start-ups and collectibles!

With Regulation A+, a non-accredited investor can only invest a maximum of 10% of their annual income or 10% of their net worth per year, whichever is greater. There are no restrictions for accredited investors.

With Regulation Crowdfunding, non-accredited investors with an annual income or net worth less than $124,000, are limited to invest a maximum of 5% of the greater of those two amounts. For those with an annual income and net worth greater than $124,000, he/she is limited to investing 10% of the greater of the two amounts.

At the close of an offering, all investors whose funds have “cleared” by this time will be included in the disbursement. At this time, each investor will receive an email from StartEngine with their Countersigned Subscription Agreement, which will serve as their proof of purchase moving forward.

Please keep in mind that a company can conduct a series of “closes” or withdrawals of funds throughout the duration of the campaign. If you are included in that withdrawal period, you will be emailed your countersigned subscription agreement and proof of purchase immediately following that withdrawal.

StartEngine assists companies in raising capital, and once the offering is closed, we are no longer involved with whether the company chooses to list shares on a secondary market, or what occurs thereafter. Therefore, StartEngine has no control or insight into your investment after the close of the live offering. In addition, we are not permitted to provide financial advice. You may want to contact a financial professional to discuss possible investment outcomes.

For Regulation Crowdfunding, investors are able to cancel their investment at any point throughout the campaign up until 48 hours before the closing of the offering. Note: If the company does a rolling close, they will post an update to their current investors, giving them the opportunity to cancel during this timeframe. If you do not cancel within this 5-day timeframe, your funds will be invested in the company, and you will no longer be able to cancel the investment. If your funds show as ‘Invested’ on your account dashboard, your investment can no longer be canceled.

For Regulation A+, StartEngine allows for a four-hour cancelation period. Once the four-hour window has passed, it is up to each company to set their own cancelation policy. You may find the company’s cancelation policy in the company’s offering circular.

Once your investment is canceled, there is a 10-day clearing period (from the date your investment was submitted). After your funds have cleared the bank, you will receive your refund within 10 business days.

Refunds that are made through ACH payments can take up to 10 business days to clear. Unfortunately, we are at the mercy of the bank, but we will do everything we can to get you your refund as soon as possible. However, every investment needs to go through the clearing process in order to get sent back to the account associated with the investment.

Both Title III (Regulation Crowdfunding) and Title IV (Reg A+) help entrepreneurs crowdfund capital investments from unaccredited and accredited investors. The differences between these regulations are related to the investor limitations, the differing amounts of money companies are permitted to raise, and differing disclosure and filing requirements. To learn more about Regulation Crowdfunding, click here, and for Regulation A+, click here.


@ 2022 All Rights Reserved

Apple Store Logo

Get To Know Us

Our Team



Important Message


Unless indicated otherwise with respect to a particular issuer, all securities-related activity is conducted by regulated affiliates of StartEngine: StartEngine Capital, LLC, a funding portal registered here with the US Securities and Exchange Commission (SEC) and here as a member of the Financial Industry Regulatory Authority (FINRA), or StartEngine Primary, LLC, a broker-dealer registered with the SEC and FINRA/SIPC . You can review the background of our broker-dealer and our investment professionals on FINRA’s BrokerCheck here. StartEngine Secondary is an alternative trading system regulated by the SEC and operated by StartEngine Primary, LLC, a broker dealer registered with the SEC and FINRA. StartEngine Primary, LLC is a member of SIPC and explanatory brochures are available upon request by contacting SIPC at (202) 371-8300.

Investment opportunities posted and accessible through the site are of three types:

1) Regulation A offerings (JOBS Act Title IV; known as Regulation A+), which are offered to non-accredited and accredited investors alike. These offerings are made through StartEngine Primary, LLC (unless otherwise indicated). 2) Regulation D offerings (Rule 506(c)), which are offered only to accredited investors. These offerings are made through StartEngine Primary, LLC. 3) Regulation Crowdfunding offerings (JOBS Act Title III), which are offered to non-accredited and accredited investors alike. These offerings are made through StartEngine Capital, LLC. Some of these offerings are open to the general public, however there are important differences and risks.

Any securities offered on this website have not been recommended or approved by any federal or state securities commission or regulatory authority. StartEngine and its affiliates do not provide any investment advice or recommendation and do not provide any legal or tax advice with respect to any securities. All securities listed on this site are being offered by, and all information included on this site is the responsibility of, the applicable issuer of such securities. StartEngine does not verify the adequacy, accuracy or completeness of any information. Neither StartEngine nor any of its officers, directors, agents and employees makes any warranty, express or implied, of any kind whatsoever related to the adequacy, accuracy, or completeness of any information on this site or the use of information on this site. See additional general disclosures here.

By accessing this site and any pages on this site, you agree to be bound by our Terms of use and Privacy Policy, as may be amended from time to time without notice or liability.

Canadian Investors Investment opportunities posted and accessible through the site will not be offered to Canadian resident investors. Potential investors are strongly advised to consult their legal, tax and financial advisors before investing. The securities offered on this site are not offered in jurisdictions where public solicitation for offerings is not permitted; it is solely your responsibility to comply with the laws and regulations of your country of residence.

California Investors Only – Do Not Sell My Personal Information (800-317-2200). StartEngine does not sell personal information. For all customer inquiries, please write to

StartEngine’s Reg A+ offering is made available through StartEngine Crowdfunding, Inc. This investment is speculative, illiquid, and involves a high degree of risk, including the possible loss of your entire investment. For more information about this offering, please view StartEngine’s offering circular and risk associated with this offering.