
How RedSentinel helped a Lyon-based deeptech startup validate their security infrastructure before large-scale deployment.
7 days
Audit duration
150+
Tests performed
Pioneer of Agentic AI in France
DigitalKin is a Lyon-based startup founded in 2023 by Emmanuel Théry (ex-Michelin, ex-Dynergie), Sébastien Deschaux and Nicolas Lester Reynolds. The company develops France's first platform for recruiting, training and managing autonomous AI employees: the "Kins".
Unlike traditional chatbots, Kins are cognitive agents capable of executing complex end-to-end tasks: scientific literature reviews, document analysis, structured report writing, business process automation.
"Our Kins don't replace human expertise, they multiply it."
Emmanuel Théry, CEO & Co-fondateur
Why a security audit was essential
Demonstrate a mature security posture
Companies like Boiron require security guarantees
Kins handle strategic documents (R&D, CIR)
Multi-agent platform integrating multiple LLMs
Slush Helsinki and European scaling
Web + AI/LLM dual competence needed
A two-part complementary audit
Based on OWASP Top 10, covering authentication, access controls, server configuration, injections and data exposure.
Based on OWASP LLM Top 10, analyzing AI agent-specific risks: prompt injection, data leakage via model, unexpected agent behaviors.
Structured methodology
Scope definition, access setup, application mapping
Passive infrastructure analysis and entry point identification
Controlled exploitation of potential vulnerabilities
Finding confirmation and real impact assessment
Detailed report and presentation session
What the audit revealed
No critical vulnerability allowing immediate system compromise. The platform rests on a solid technical foundation. Recommendations mainly focus on strengthening existing configurations, demonstrating already well-established security maturity for a scaling startup.
A modern audit experience
Audit progress visible by client, findings documented on the fly
Summary for management and investors
Each finding with proofs, CVSS scoring, remediation
Ranking by criticality and remediation effort
Live presentation to technical team
Signed report via our platform for evidential value
"We called on RedSentinel and Alexandre Tavares for a security audit of our platform hub.digitalkin.ai. The collaboration was smooth and very professional: the audit methodology is clear and reassuring, and we were able to follow progress step by step directly from their platform. Alexandre was available, educational and proactive on corrective measures to implement. We leave with a very structured report and a concrete roadmap to strengthen our security. I highly recommend RedSentinel to any tech team that wants to take their product security seriously."

Thibaud PERRIN
DigitalKin
See on LinkedIn
A rare expertise combining OWASP Top 10 (web) and OWASP LLM Top 10 (AI) methodologies.
We think like an attacker to protect like a defender.
Real-time audit tracking, no black box.
Contextualized recommendations, not generic 200-page reports.
Developing a SaaS application, an AI platform, or a digital product? Identify your vulnerabilities before an attacker does.