NeuraLegion, a startup that focuses on testing dynamic app applications and identifying logical business issues, announced today that it has changed its name to Bright Security. Previous investors DNX Ventures, J-ventures, Fusion Fund and Incubate Fund also participated in this round.
When NeuraLegion / Bright Security launched in 2018, the company focused on an AI-enabled fuzzer that helped developers find and reduce potential security breaches in their code.
While the team found potential customers for the service, it was pretty good. “People who love it really love it,” said Gaddy Bashwitz, who became Bright Security CEO in January. But there are very few people who can run it, because it is a very harmful product that is devastating, basically, because day zero seems – and day finds zero. It destroys any goal that is set against it, which means that if you run it against a production environment or close to production, you have to be able to rebuild that goal over and over and over again. . This requires a lot of coordination between different teams – not something that most companies excel at – and so many of the company’s potential users are unable to adapt.
By the time the team increased its initial $ 4.7 million round in 2020, it had already focused on testing dynamic applications, that is, finding vulnerabilities in Web and API applications by simulating attacks by external users. This is what Bright Security is focusing on today, and as Bashwitz points out, the company does not intend to branch out in related areas such as static application security testing. The company says that now more than 4,000 organizations use its products.
Because developers are increasingly tasked with testing security (in addition to everything else that comes with the DevOps model), the Bright Security team emphasizes the ease of use and friction of their tools as much as possible. It integrates with existing CI / CD pipelines and can scan anything from web applications to Rest, SOAP and GraphQL APIs. The team prides itself on avoiding false positives, something that often draws developers into unnecessary holes and wasted rabbit time.
Regarding the name change, Bashwitz noted that there are many companies with similar names, and “Bright” better represents what the company is doing. “We’re trying to shed light on all of these teams – both looking at vulnerabilities and trying to provide a beacon on how you can do [dynamic application security testing] properly,” he said. He also noted that DAST has become a bit obsolete in recent years (he called it a C.Y.A. tool), despite the need for such tools.
“Application Security is ready to review the current market demands,” said Karthik Subramanian, one of Evolution Equity Partners. Tools built exclusively for the AppSec team are obsolete if not available to developers and the DevOps team, and our tools need to evolve to ensure that security is not a team work, but a shared mission with shared responsibilities. “And it is divided.” Subramanian will join Bright Security.
Parsaland Trading Company with many activities in the fields of import and export, investment consulting, blockchain consulting, information technology and building construction