RAVEN.IO has secured $20 million in funding to accelerate innovation in runtime application security, signaling strong investor confidence in its unique approach to protecting applications from modern cyber threats. Norwest led the seed round, followed by a post-seed investment from Elron Ventures, with participation from RedSeed, UpWest, SentinelOne, Jibe Ventures, Dnipro VC, Unusual Ventures, CyberFuture, and Descope CEO Slavik Markovich. With this capital, the company plans to enhance product development, expand its go-to-market strategy in the United States, and scale its engineering and research teams.

Since its founding in 2023, RAVEN.IO has rapidly developed a platform that focuses on analyzing how code behaves within a running application. Unlike traditional security tools that depend on external monitoring or known vulnerability databases such as CVEs, the company takes an inside-out approach. As a result, it provides real-time visibility into application behavior, enabling organizations to detect threats where they actually occur. This innovation has already gained traction, with the platform deployed across 11 enterprise customers, particularly within the insurance and financial sectors, where application-layer security is critical.

As the cybersecurity landscape evolves, the rise of AI-generated exploits has significantly increased the speed and scale of attacks. Consequently, traditional vulnerability management models are struggling to keep pace. In many cases, attackers exploit vulnerabilities before they are even documented, creating a dangerous gap between exposure and remediation. Therefore, organizations must adopt more proactive and dynamic security strategies.

RAVEN.IO addresses this challenge by introducing a CVE-less runtime behavioral security model. Instead of relying on known threat signatures, the platform continuously monitors internal execution paths within applications. By breaking down these processes into execution chains and generating behavioral fingerprints, it can instantly detect abnormal or malicious activity even when no known vulnerability exists. This approach allows organizations to stop attacks in real time without waiting for vulnerability disclosures or patches.

A clear example of the limitations of traditional security tools is the React2Shell attack reported in late 2025. Despite widespread use of web application firewalls (WAF) and endpoint detection and response (EDR) solutions, approximately 39% of servers remained vulnerable. However, by analyzing application behavior internally, RAVEN.IO can detect and prevent similar attacks without impacting performance or requiring intrusive instrumentation.

The company’s innovation is further supported by three registered U.S. patents, highlighting its commitment to advancing application security technologies. Additionally, its founding team brings deep expertise in cybersecurity. CEO Roi Abitboul, CTO Guy Franco, and Chief Research Officer Omer Yair are all alumni of elite cyber units within the Israel Defense Forces. Previously, they co-founded Javelin Networks, which Symantec acquired, where they later led the development of endpoint detection and cloud security solutions.

Roi Abitboul, Co-Founder and CEO, RAVEN.IO, emphasized the urgency of this new approach:
“In an era where AI tools can identify and exploit vulnerabilities at unprecedented scale and speed, organizations can no longer rely solely on signatures or on CVEs published after the fact. We founded RAVEN.IO to enable organizations to precisely prevent attacks and to truly understand, in real time, what is happening inside their applications, without compromising performance or business continuity.”

Investors also recognize the market opportunity. Yaniv Shnieder, CEO of Elron Ventures, noted:
“RAVEN.IO operates in one of the fastest-growing areas of cybersecurity. The application security market is currently estimated at around $17 billion, with runtime application security among its fastest-growing segments. The shift toward modern architectures, cloud environments and accelerated AI-driven development is creating a need for a deeper security layer within the application itself. We believe strongly in the company’s business momentum and in its potential for broad adoption across global enterprises, which is why we joined and are supporting the company post-seed.”

Dror Nahumi, General Partner at Norwest, added: “The cybersecurity market landscape is undergoing a fundamental shift from code-level vulnerability detection to runtime detection and prevention. This transition is accelerating amid significant growth in AI-generated code, which expands the attack surface and makes traditional security solutions increasingly ineffective. The RAVEN.IO team has previously demonstrated deep technological expertise in building runtime exploit prevention solutions, deployed in complex, large-scale production environments. Today, they are leveraging these capabilities to return control over vulnerability management to application owners.”

Overall, RAVEN.IO’s funding marks a pivotal step in redefining application security. As cyber threats become faster and more sophisticated, runtime behavioral analysis is emerging as a critical layer of defense, helping organizations move beyond reactive security and toward real-time, proactive protection.

Recommended Cyber Technology News: 

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com