Code Intelligence application security testing platform raises $12M Series A – TechCrunch

Code intelligence, a Bonn, Germany-based automated application security testing platform focused on fuzzing, today announced it has raised $12 million in Series A funding led by Tola Capital. Existing investors LBBW, WEST, Verve Ventures, HTGF and Thomas Dohmke, the CEO of GitHub, also participated in this round, bringing the company’s total funding to around $15.7 million.

The company was co-founded in 2018 by Sergei Dechand, Khaled Yakdan and their former professor at the University of Bonn, Matthew Smith.

Picture credits: Code intelligence

“At the time, we noticed that fuzzy and some other techniques are super powerful, but outside of the security research community, no one has actually used it,” Dechand told me. “We started collaborating from university with a few big companies to try things out and we had very, very good results. So even though we didn’t want to start a company initially, we kind of had a prototype Encouraged by Smith, the team decided to give it a shot and founded a company to develop and market their prototype system. At first, the co-founders continued to work at the university, but in 2019, they decided to work on the service full time.Now, a few years later, Code Intelligence counts Bosch, Continental and Deutsche Telekom among its users.

Dechand argued that while there are many open-source fuzzing tools, it still takes a very capable security team to implement and use them. Since security teams are the bottlenecks for implementing these tools, Code Intelligence has focused on providing its tools directly to developers. “At the end of the day, they’re the ones who fix the problem and know best what type of error is critical,” Dechand said.

Picture credits: Code intelligence

Since developers don’t want to look at another tool in their development pipeline, Code Intelligence integrates with services like Jenkins, GitHub, and GitLab. With this, developers will not only see how well their code is covered, but Code Intelligence also adds an additional pipeline into the continuous integration system that automatically fuzzes code when a new pull or merge request arrives.

Currently, Code Intelligence supports Go, C++, Java, and Kotlin, and support for Node.js, JavaScript, .NET, and Python is coming soon.

Picture credits: Code intelligence

At this time, Code Intelligence’s self-service platform remains in closed beta, and the company is still working closely with its enterprise customers to onboard new teams. Over time, however, the plan is to automate all of this and launch a self-service platform.

“Code Intelligence is the most advanced automated fuzz testing solution for applications and APIs and is incredibly easy for developers to use in their existing workflows,” said Will Coggins, Vice President of Tola Capital. “The potential for this technology to improve the way development teams create secure software is enormous.”


Source link

Comments are closed.