DryRun Security, the AI-native company delivering application security (AppSec) for development and security teams, announced its $8.7 million seed funding round from lead investors LiveOak Ventures and Work-Bench as well as participation from Cannage Capital.
Read also – Basetwo Raises $11.5Mn Series A to Transform Chemical Manufacturing with Physics AI Platform
The company is also introducing Natural Language Code Policies (NLCP), a game-changing feature that frees AppSec teams from the painstaking work of building and maintaining scripted policy rules.
Read also – Mobly Secures $4.3Mn Seed Funding to Revolutionize Event Marketing Technology
By allowing them to define their security policy in an intuitive, domain-focused way, NLCP cuts the overhead of custom rule writing and helps teams get coverage across all of their code bases without worrying about the language or framework.
DryRun Security is going beyond AI and LLM’s early automation capabilities to build what it calls Contextual Security Analysis (CSA). This approach both identifies security risks and seamlessly integrates mitigation into developers’ workflows. CSA layers static context, change context and application context to make contextually aware assertions in near real-time and is ideal for distributed, modern applications and teams. It fits naturally in an organization practicing DevOps, prioritizes reducing security tool pressure on developers and makes it easy for developers to reason about security.
“DryRun Security is a true leap forward in application security, enabling application security teams to identify code risk in a way that previously wasn’t possible,” said Creighton Hicks, Partner at LiveOak Ventures. “The current generation of pattern-matching tools strictly looks at the literal syntax of code. DryRun Security is built from the ground up to leverage the latest in AI technology. This not only eliminates the need to write complicated pattern-matching rules but also goes beyond the literal syntax to understand risk based on code context and behavior. For the first time, DryRun Security enables the left hand of application security to know the security implications from what the right hand of development is doing, even if there’s not technically an insecure line of code.”
DryRun Security was co-founded in 2023 by two application security luminaries, James Wickett and Ken Johnson. Having worked in the AppSec space for years, the founders shared a vision for empowering development teams to build secure software without disrupting their workflows. With this new funding and product launch, the company is poised to change the way teams approach application security. DryRun Security will use the investment to increase its engineering hires and grow its Go To Market (GTM) function.
About DryRun Security
DryRun Security (based in Austin, TX) finds the needle in the haystack of code changes so Application Security (AppSec) teams spot unknown risks before they start. The company was honored as a finalist in the BlackHat 2024 Startup Spotlight Competition and runs more than 15,000 code reviews every week for its customers, which include BrightHR, Gusto, PlanetArt, The Modern Groom, SimpleRose, RAD Security, and Rollbar among others. DryRun Security was founded by AppSec and DevOps veterans James Wickett and Ken Johnson who have empowered more than 10,000 developers with secure code review training.
