Tengu Labs exists because the best security tools come from people who've actually done the work — not from product teams three layers removed from the SOC floor.
Tengu Labs was founded by a cybersecurity practitioner with over 20 years of experience across Fortune 500 organizations — running penetration testing programs, building detection engineering capabilities, managing vulnerability programs, and leading security teams at scale.
The name comes from the Tengu of Japanese mythology — mountain spirits known for their mastery of martial arts, strategy, and the blade. They were teachers of warriors, sharpening skills through relentless practice. That's the philosophy behind every tool we build: sharpen the practitioner.
After years of watching security teams struggle with fragmented workflows, manual ATT&CK mapping, and tool sprawl, the idea was simple — build the tools that practitioners actually want, informed by the work they actually do.
Every tool at Tengu Labs starts with a real workflow problem. Log Lens was born from the tedium of manually cross-referencing ATT&CK Navigator with log source documentation. Fissure came from the frustration of juggling Burp, a browser, CyberChef tabs, and a text file of payloads during assessments.
We use AI as an accelerant, not a crutch. Our tools augment practitioner expertise — they don't replace judgment. Every output is transparent, editable, and exportable. You own your data, your detections, and your workflow.
Our core engines are open source under AGPL-3.0. We believe security tools should be inspectable, especially tools that handle your traffic or influence your detection logic. SaaS tiers add convenience and collaboration — not lock-in.
Whether you're interested in our tools or want to discuss a custom engagement.
Get in Touch →