RAVEN.IO, a cybersecurity company focused on runtime application protection, announced that it has raised $20 million in funding to accelerate product development, expand go-to-market efforts in the United States, and expand its engineering and research team. The round was led by Norwest, with additional investment from Elron Ventures, with participation from RedSeed, UpWest, SentinelOne, Jibe Ventures, Dnipro VC, Unusual Ventures, CyberFuture, and Descope CEO Slavik Markovich.
Founded in 2023, the company has developed a platform that analyzes how code behaves within running applications, rather than relying on traditional security approaches that rely on known vulnerabilities and external monitoring tools. The platform is already in production at 11 enterprise customers, primarily in the insurance and financial services sectors, which are particularly sensitive to application layer and supply chain attacks.
RAVEN.IO is positioning its technology as a response to the rapid increase in AI-generated exploits. This allows attackers to identify and weaponize vulnerabilities faster than traditional CVE systems can track and expose them. As a result, organizations are increasingly exposed to risks before patches or signatures are available. The company claims that this change makes traditional signature-based defenses inadequate.
Its platform observes the internal execution paths within an application in real time and creates a behavioral fingerprint of each execution chain. By identifying deviations from expected behavior, the system can quickly detect and stop attacks even when no known vulnerabilities exist. This approach removes dependence on CVE publishing cycles and enables real-time protection without impacting instrumentation or performance.
The company highlights incidents such as the December 2025 React2Shell attack, which left an estimated 39% of servers worldwide vulnerable despite the presence of modern web application firewalls and endpoint detection tools, as evidence of the limitations of external security defenses.
RAVEN.IO’s technology is registered in three U.S. patents and reflects a broader shift toward runtime detection and prevention in cybersecurity, especially as AI-driven developments increase the amount and complexity of potential vulnerabilities.
The company was founded by CEO Roy Abitboul, CTO Guy Franco, and Chief Research Officer Omar Yair, all veterans of the Israeli Defense Force’s elite cyber units. The founders previously co-founded Javelin Networks, an endpoint security company that was acquired by Symantec and went on to lead the development of endpoint detection and response and cloud protection products.
The application security market is estimated at approximately $17 billion, with runtime application security emerging as one of the fastest growing segments. As AI accelerates software development and expands attack surfaces, RAVEN.IO aims to capitalize on this shift by providing deeper visibility and protection within modern cloud-native applications.
important quotes
“In an era where AI tools can identify and exploit vulnerabilities at unprecedented scale and speed, organizations can no longer rely solely on signatures or CVEs that are published after the fact. We founded RAVEN.IO to enable organizations to accurately prevent attacks and truly understand what’s happening within their applications in real-time without compromising performance or business continuity.”
Roi Abitboul, RAVEN.IO Co-Founder and CEO
“RAVEN.IO operates in one of the fastest growing areas of cybersecurity. The application security market is currently estimated at approximately $17 billion, and runtime application security is one of the fastest growing segments. The move to cloud environments, AI-driven acceleration of development is creating a need for deeper layers of security within the applications themselves. We strongly believe in the company’s business momentum and its potential for widespread adoption across global enterprises, which is why we are joining Post-Seed and supporting the company.”
Yaniv Schnieder, CEO of Elron Ventures
“The cybersecurity market landscape is undergoing a fundamental shift from code-level vulnerability detection to runtime detection and prevention. This transition is accelerating amid a significant increase in AI-generated code, expanding the attack surface and making traditional security solutions increasingly ineffective. The RAVEN.IO team has previously demonstrated deep technical expertise in building runtime exploit prevention solutions that are deployed in complex, large-scale production environments. Now, they are leveraging these capabilities to return control of vulnerability management to application owners.”
Dror Nahumi, Norwest General Partner
