NetRise, a leader in software supply chain security, has launched NetRise ZeroLens, an AI-powered cybersecurity product designed to detect undisclosed software weaknesses before they become exploited vulnerabilities. The product was announced on April 28, 2025, in San Francisco.
NetRise’s platform creates a software asset inventory, analyzing compiled code to identify risk in software that executes on devices and systems using binary composition analysis (BCA). This technique identifies vulnerabilities not found through traditional vulnerability scanners or source code scans. NetRise ZeroLens builds on this capability by analyzing compiled code for weaknesses that have not yet been identified or exposed as vulnerabilities.
The product incorporates AI to summarize the weaknesses found and guides remediation based on the code’s context. “By identifying weaknesses in code already running on devices critical to the enterprise, NetRise ZeroLens provides CISOs and their teams a path to rapid detection and mitigation before those weaknesses are exposed as vulnerabilities,” said Thomas Pace, NetRise CEO.
NetRise ZeroLens offers several benefits, including:
- Enhanced quantification of risk: Identifies previously unknown weaknesses in binary software, enabling better risk management decisions.
- Vulnerability research at scale: Enables ethical hackers and red team members to upload and analyze thousands of binaries concurrently.
- Proactive detection of code weaknesses: Prioritizes remediation and mitigation workflows for device manufacturer product security teams.
Velentium Medical, a company that ensures the security of medical devices, plans to use NetRise ZeroLens to enforce CWE analysis on projects where other static analysis tools are not effective. “NetRise ZeroLens gives us the ability to test software that other static analysis tools don’t handle well,” said Garrett Schumacher, Business Unit Director, Product Security at Velentium Medical.
alphaMountain’s AI now knows “everything” about threats
NetRise ZeroLens also creates AI-driven summaries of its findings to guide actions needed to mitigate risk. “NetRise ZeroLens provides researchers and developers specific guidance based on its findings,” said Michael Scott, NetRise CTO. The product aims to help organizations proactively plan to mitigate risk by identifying weaknesses before they are exploited.
The launch of NetRise ZeroLens is a response to the need for proactive vulnerability identification in the cybersecurity market. According to Pace, the product “builds on our founding vision by adding to the software asset inventory a look beyond vulnerabilities to finding weaknesses that have yet to be exploited by bad actors.”
