Raven.io

Big news 🚀 Raven emerges from stealth with $20M to redefine runtime security. AI has industrialized exploits—we stop them in real time, before CVEs. #CVE_LESS Link to announcement blog in the first comment

Mark the date: January 26–28, 2026 We’ll be attending @Cybertech Global in Tel Aviv. We’re excited to showcase ​how Raven stops malicious code before it ever executes ​(whether a CVE exists or not​!).

𝐂𝐕𝐄-𝐥𝐞𝐬𝐬 𝐭𝐡𝐫𝐞𝐚𝐭𝐬 𝐚𝐫𝐞 𝐪𝐮𝐢𝐜𝐤𝐥𝐲 𝐞𝐦𝐞𝐫𝐠𝐢𝐧𝐠 𝐚𝐬 𝐨𝐧𝐞 𝐨𝐟 𝐭𝐡𝐞 𝐦𝐨𝐬𝐭 𝐬𝐢𝐠𝐧𝐢𝐟𝐢𝐜𝐚𝐧𝐭 𝐫𝐢𝐬𝐤𝐬 𝐭𝐨 𝐜𝐥𝐨𝐮𝐝 𝐞𝐧𝐯𝐢𝐫𝐨𝐧𝐦𝐞𝐧𝐭𝐬. 🔗 Read more: raven.io/blog/what-are-…

Is React2Shell the modern-day Log4J? Raven's Chief Research Officer, Omer Yair and Senior Researcher, Dejan Lukan break down CVE-2025-55182 and why this React2Shell vulnerability is so dangerous. 📽️ Watch the full breakdown: na2.hubs.ly/H02tfP50 #React2Shell #CVE2025_55182

Is React2Shell the modern-day Log4J? Raven's Chief Research Officer, Omer Yair and Senior Researcher, Dejan Lukan break down CVE-2025-55182 and why this React2Shell vulnerability is so dangerous. 📽️ Watch the full breakdown: na2.hubs.ly/H02tgnS0 #React2Shell #CVE2025_55182

🚗 Remember when electric cars were just hybrid add-ons to gas engines? That’s what early reachability solutions felt like. But what if we threw out the old blueprint entirely? 👉 Read the full blog to see how a shift in perspective changes everything: hubs.li/Q03ysWqW0

We're exhibiting at black hat USA 2025. 📍Booth #6729 (Startup City) Book a time with our team to learn more about our Runtime SCA and Runtime ADR solutions: hubs.li/Q03xz1TX0 #BlackHat2025

We’re on Hacker News! James does an excellent job breaking down the concept of runtime reachability; what it is, why it matters, and how it fits into modern AppSec strategies. What makes it extra exciting? Raven is featured as part of the solution. 🙌 Link in the first comment

eBPF Verifier is your (abusive) friend. In our latest blog, we dive into how Raven leverages eBPF to tame down eBPF instruction overflow. 🔍 Learn how we bend the rules (without breaking them): hubs.li/Q03xsmGY0

Dude knows

Over 95% of vulnerabilities are un-exploitable. UN-EXPLOITABLE!

🔗 Read full blog here: raven.io/blog/why-stati…

Our Chief Research Officer, Omer Yair, explains in our latest blog why static code analysis falls short for dynamic languages like Python, JavaScript, and Ruby and explores how runtime security bridges critical blind spots missed by traditional scanning methods. Link in comment

🚨 Shocking: Fewer than 1 in 33 critical or high-severity vulnerabilities are actually exploitable. The only way to know what truly matters? Function-Level Runtime Context. Stop wasting engineering time on irrelevant CVEs. How are you prioritizing vulnerabilities today?

Kicking off the Gartner Security & Risk Management Summit in style! Day 1 was packed with energy. Ready to dive into Day 2! If you’re attending and haven’t stopped by yet, come visit us at Booth #975 and let’s talk about what real runtime application security looks like.

Two days from now, Kubernetes (K8s) will celebrate its 9th anniversary as an open-source project! Let’s celebrate the technology that orchestrates the modern cloud!

Gartner Security & Risk Management Summit is happening next week! Swing by our booth (975) to see Runtime Application Security taken to the next level. Book a time with our team in advance to get our SCA is Broken T-Shirt! 🔗 Link to book a time: hubs.li/Q03p-hj10

The energy at yesterday's Cresting Wave partner event was electric, even with NYC rain. We had real conversations about real challenges with CISOs and CTOs looking to explore smart, forward-thinking solutions. Thanks Cresting Wave for bringing together such a sharp crowd.