RAVEN.IO, a cybersecurity company focused on protecting applications at runtime, announced it has raised $20 million in funding to accelerate product development, expand its U.S. go-to-market efforts, and grow its engineering and research teams. The round was led by Norwest, with additional investment from Elron Ventures and participation from RedSeed, UpWest, SentinelOne, Jibe Ventures, Dnipro VC, Unusual Ventures, CyberFuture, and Descope CEO Slavik Markovich.
Founded in 2023, the company has developed a platform that analyzes how code behaves within running applications, rather than relying on traditional security approaches that depend on known vulnerabilities or external monitoring tools. The platform is already deployed in production with 11 enterprise customers, primarily in insurance and financial services sectors that are especially sensitive to application-layer and supply-chain attacks.
RAVEN.IO is positioning its technology as a response to the rapid rise of AI-generated exploits, which are enabling attackers to identify and weaponize vulnerabilities faster than traditional CVE systems can track and publish them. As a result, organizations are increasingly exposed before patches or signatures are available. The company argues that this shift renders conventional, signature-based defenses insufficient.
Its platform observes internal execution paths within applications in real time, creating behavioral fingerprints for each execution chain. By identifying deviations from expected behavior, the system can detect and stop attacks instantly, even when no known vulnerability exists. This approach removes reliance on CVE publication cycles and enables real-time protection without instrumentation or performance impact.
The company highlights incidents such as the React2Shell attack in December 2025, which left an estimated 39 percent of servers worldwide vulnerable despite the presence of modern web application firewall and endpoint detection tools, as evidence of the limitations of external security defenses.
RAVEN.IO’s technology has been registered in three U.S. patents and reflects a broader shift in cybersecurity toward runtime detection and prevention, particularly as AI-driven development increases the volume and complexity of potential vulnerabilities.
The company was founded by CEO Roi Abitboul, CTO Guy Franco, and Chief Research Officer Omer Yair, all veterans of elite cyber units in the Israel Defense Forces. The founders previously co-founded Javelin Networks, an endpoint security company that was acquired by Symantec, where they later led development of endpoint detection and response and cloud protection products.
The application security market is estimated at approximately $17 billion, with runtime application security emerging as one of its fastest-growing segments. RAVEN.IO aims to capitalize on this shift by offering deeper visibility and protection within modern, cloud native applications as AI accelerates software development and expands the attack surface.
KEY QUOTES
“In an era where AI tools can identify and exploit vulnerabilities at unprecedented scale and speed, organizations can no longer rely solely on signatures or on CVEs published after the fact. We founded RAVEN.IO to enable organizations to precisely prevent attacks and to truly understand, in real time, what is happening inside their applications, without compromising performance or business continuity.”
Roi Abitboul, Co-Founder And CEO, RAVEN.IO
“RAVEN.IO operates in one of the fastest-growing areas of cybersecurity. The application security market is currently estimated at around $17 billion, with runtime application security among its fastest-growing segments. The shift toward modern architectures, cloud environments and accelerated AI-driven development is creating a need for a deeper security layer within the application itself. We believe strongly in the company’s business momentum and in its potential for broad adoption across global enterprises, which is why we joined and are supporting the company post-seed.”
Yaniv Shnieder, CEO, Elron Ventures
“The cybersecurity market landscape is undergoing a fundamental shift—from code-level vulnerability detection to runtime detection and prevention. This transition is accelerating amid significant growth in AI-generated code, which expands the attack surface and makes traditional security solutions increasingly ineffective. The RAVEN.IO team has previously demonstrated deep technological expertise in building runtime exploit prevention solutions, deployed in complex, large-scale production environments. Today, they are leveraging these capabilities to return control over vulnerability management to application owners.”
Dror Nahumi, General Partner, Norwest
