Products
netrise-platform-icon
NetRise Platform
Analyze compiled code to create accurate SBOMs and uncover risk within the software that actually executes on your devices and throughout your enterprise.
ZeroLens-icon
NetRise ZeroLens
Identify weaknesses in compiled software before bad actors find and exploit them.
integration-menu-img
Integrations
NetRise integrates seamlessly into your workflow. Explore our ecosystem to secure your software supply chain.
Solutions
Solutions

Explore our comprehensive solutions designed to meet diverse industry needs and use cases, ensuring security, compliance, and maximum efficiency.

Featured Article
d654602309a74ff97e7cda24e838b73f
The Limitations of Traditional Network-Based Vulnerability Scanning – And the Systematic Underestimation of
Software Risks
Use Cases
ph_seal-check-light
Compliance Adherence
Ensure compliance with global standards.
ph_chart-scatter-light
Continuous Monitoring
Real-time insights and alerts.
ph_warning-light
Holistic Risk Visibility
Achieve full visibility on vulnerabilities.
ph_list-checks-light
Inventory & Querying
Track and manage software assets.
ph_currency-circle-dollar-light
Return on Investment
Maximize risk-adjusted returns.
ph_hand-coins-light-1
SBOM Management
Maintain comprehensive software bills.
By Industry
ph_user-rectangle-light
Consulting Firms
Solutions for consultancy needs.
ph_barbell
Device Manufacturers
Compliance and security across devices.
ph_building-office-light
Enterprise Corporations
Security for large-scale environments.
ph_bank-light
Government Organizations
Reliable public sector solutions.
ph_ambulance-light
Healthcare
Secure and compliant healthcare data.
ph_lightning-light
Power & Utilities
Manage risk in critical infrastructure.
Resources
Resources

Explore our comprehensive solutions designed to meet diverse industry needs and use cases, ensuring security, compliance, and maximum efficiency.

Latest Resources
SCVis-report
Supply Chain Visibility &
Risk Study
Resource Library
ph_notepad-light
Blog
Stay informed with our last articles.
ph_newspaper-light
Whitepapers & Briefs
In-depth insights on industry standards.
ph_microphone-light
Webinars & Podcasts
Check our last webinars & podcasts
glossary-icon
Glossary
Master supply chain security terms.
News & Updates
ph_megaphone-light
Annoucements
Latest product and company updates.
ph_newspaper-clipping-light
In the News
View media coverage and news highlights featuring NetRise.
ph_calendar-star-light
Events
Upcoming industry conferences.
ph_medal-light
Awards
Industry recognitions and achievements.
Company
Company
about
About us
Learn more about our mission to enhance cybersecurity across industries.
careers
Careers
Explore exciting career opportunities to shape the future of secure technology.
security
Security
Discover our cutting-edge solutions to protect your digital infrastructure.
Schedule a Demo
Schedule a Demo
Announcements Aug 5, 2025 4min read

NetRise® Introduces Platform Enhancement Focusing Remediation and Mitigation on Components That Execute At Run-Time

New Platform Delivers Increased Scale While New Features Add Efficiency in the Software Development Life Cycle and The SOC
 

Austin, TX - August 5, 2025 - NetRise, the leader in software supply chain security — building software asset inventories that enable enterprises to identify and manage risk in software that actually runs on devices across global organizations — announced a significant update to its core product platform. This update makes users' time more efficient and effective in prioritizing, mitigating, and remediating vulnerabilities found in the software they produce and reducing risk in the environments in which that software runs.

"Vulnerability management and threat intelligence teams often suffer from and are distracted by noise in the systems they use to protect their enterprise infrastructure," said Thomas Pace, founder and CEO of NetRise. "The capabilities we've announced today allow them to focus on those vulnerabilities that are both accessible on the network and automatically execute at runtime. With this intelligence the SOC team has at their fingertips a mechanism to update policies and mitigate those vulnerabilities before a threat actor can take advantage."

"This is the difference between theoretical risk and real attack surface."

- Michael Scott, Co-founder and CTO of NetRise

Share on X


Key features introduced into the NetRise platform include:

 

  • Reachability - context on whether a vulnerability is reachable and autoruns within a given system, including user execution context. This approach aims to prioritize vulnerabilities more effectively, focusing on those that pose a real threat to the system.
Artboard 1
  • SBOM Edit - manually add, remove, and edit SBOM components, and add information that is often lost in the build process, or licensing information that is contained in metadata files from a package manager, to ensure the accuracy of SBOMs delivered.
  • Fix Version - indication of the minimum version of the component in which the vulnerability is resolved, a useful datapoint for prioritization because it highlights issues that are likely easy to fix.

  • Platform re-architecture that increases the ability to scale and to speed up the development of future releases.

"When we analyze systems and artifacts, we typically find hundreds or even thousands of vulnerabilities, but the vast majority are in components that never actually execute. This creates a dangerous signal-to-noise problem - security teams waste precious time investigating CVEs in dormant libraries while missing the critical vulnerabilities in applications that run," said Michael Scott, co-founder and CTO of NetRise. "By mapping the execution chain from autostart entries through scripts to the actual vulnerable components, we can reduce vulnerability noise drastically and help teams focus on what actually matters: the vulnerabilities that can actually be exploited when the asset powers on or loads. This is the difference between theoretical risk and real attack surface."

In its Supply Chain Visibility & Risk Study, published in Q4 2024, NetRise reported that on networking devices whose compiled software NetRise analyzed, an average of 1,120 CVEs were found per device. The report showed how to prioritize those CVEs to focus on those that were network accessible, greatly reducing the work required of a manufacturer's development team or of an enterprise's third-party risk management team.

"Today's announcement, giving those teams visibility into components that autorun on startup, reduces that work even further," said Pace. "This allows software developers to remediate the most critical vulnerabilities, reducing the time to deliver secure software. And for buyers of networking and other connected devices, third-party risk teams and their partners in procurement now have the tools to negotiate more effectively with their vendors to further reduce risk in the enterprise."

Resources

  • Meet NetRise: Request a meeting with our team in Las Vegas for the Black Hat Conference2025 from 8/4 - 8/10.
  • Schedule a Demo: To learn more about the value that a software asset inventory brings to global enterprises and device manufacturers alike, see a demo of the NetRise Platform.
  • For more information about the NetRise Platform, visit https://www.netrise.io/products/platform.

 

About NetRise

Based in Austin, Texas, NetRise protects organizations from cybersecurity risk with a revolutionary approach to software supply chain security. By analyzing compiled code rather than source code, its category-redefining platform creates a software asset inventory that identifies risk within the software actually installed on the systems critical to enterprise infrastructure. With NetRise, software producers and device manufacturers alike build a more accurate view of the software composition of their products. Likewise, cybersecurity professionals within the enterprise and federal government can quickly identify vulnerabilities and other software supply chain risks in the assets that run their organization. NetRise provides both groups with the means to respond quickly to threats identified by the NetRise platform. When unforeseen software vulnerabilities are exploited by bad actors,NetRise enables rapid identification, prioritization, mitigation, and policy updates, reducing materialrisk to the business. https://www.netrise.io/

Media Contact for NetRise:
Danielle Ostrovsky
Hi-Touch PR
410-302-9459
ostrovsky@hi-touchpr.com

Stay up to date with the news

Sign Up To Get Our Free Insights Delivered To Your Inbox