NetRise is a software supply chain security company focused on what actually runs in production, not just what source code or vendor paperwork says should be present. Its cloud-based technology analyzes compiled code across firmware, binaries, applications, containers, operating systems, and other software artifacts to create software asset inventories, generate and validate SBOMs, and expose hidden risk below the application layer.
NetRise positions its offerings for organizations that build, buy, use, and maintain software in enterprise and device-heavy environments. The company has expanded from binary composition analysis into execution-aware prioritization, AI-assisted search, and provenance intelligence, giving security and procurement teams a more defensible view of software integrity, exposure, and supply chain risk.
Offerings, Capabilities, and Integrations
NetRise centers its capabilities on binary-derived visibility. The company helps customers create, ingest, enrich, edit, and validate SBOMs; compare declared manifests against compiled outputs; prioritize vulnerabilities based on what executes at startup; and continuously monitor software and firmware for newly relevant exposure. Its broader analysis also extends beyond CVEs to weaknesses, misconfigurations, secrets, licensing issues, and provenance signals that affect software trust and operational risk.
NetRise is designed to fit existing security and engineering workflows rather than operate as an isolated console. It offers API-based delivery and supports CLI and GitHub Action workflows for provenance use cases. Verified integrations span Google Cloud, GitHub, Armis, Brinqa, Nucleus, Jira, ServiceNow, and Splunk, with ZeroLens outputs also mapping into Binary Ninja and Ghidra for deeper triage and reverse-engineering analysis.
Products and Services
- NetRise Platform: Flagship cloud platform for analyzing compiled code and other software artifacts to create software asset inventories, generate and validate SBOMs, surface reachable risk, and support continuous monitoring across complex software environments.
- NetRise Provenance: Standalone and platform-delivered product that traces software packages to source repositories, reveals maintainer and organizational risk, evaluates repository health, enforces policy rules, and models dependency blast radius.
- NetRise ZeroLens: Compiled-code weakness analysis product that maps risky functions to CWEs, helps teams identify exploitable weaknesses before disclosure, and supports firmware, embedded systems, and application binaries.
- NetRise Integrations: Integration layer that connects NetRise with cloud, asset input, vulnerability management, and workflow tools so teams can ingest software artifacts and operationalize findings in existing processes.
- NetRise Trace: AI-powered semantic and keyword search capability for tracing affected assets, uncovering behavioral risk, investigating hidden vulnerabilities and misconfigurations, and validating software supply chain relationships without relying on source code.
Target Customers
NetRise targets both software producers and software buyers or operators. On the producer side, it serves product security, DevSecOps, AppSec, and engineering teams that need to verify build integrity, generate defensible SBOMs, and assess open-source dependency risk before release. On the operator side, it addresses enterprise security, vulnerability management, procurement, third-party risk, and incident response teams that need evidence of what is actually inside purchased software and connected devices.
The company is especially relevant in regulated and device-centric environments where compiled software and firmware create visibility gaps. NetRise markets into device manufacturers, enterprise corporations, government organizations, healthcare, power and utilities, and consulting firms delivering security services.
Cloud Integrations and Marketplace
- Google Cloud Marketplace: The NetRise Platform is available through Google Cloud Marketplace, giving organizations a direct procurement and deployment path for NetRise within Google Cloud-aligned environments.
Key People
- Thomas Pace: Co-Founder & CEO
- Michael Scott: Co-Founder, CTO & Chief Scientist
- Rick Beattie: CRO
- Gary Schwartz: SVP of Marketing
- Brandon Somers: VP of Finance and Operations
- Lessie Skiba: Chief of Staff
- Anthony Federsen: VP of Engineering
- Derek McCarthy: VP of Field Engineering
- Robbie Robbins: VP of Business Development and Partners
- Jason Pitzen: Head of Customer Success
Key Facts
- Headquarters: Austin, Texas, United States
- Employees: Approximately 50
- Annual Revenue: $1M-$10M
- Parent Company: None
- Subsidiaries: None
- Publicly Listed: Private
