RevEng.AI Raises $15M Series A to Verify What Software Actually Ships

RevEng.AI, a London-based cybersecurity startup founded by CEO James Patrick-Evans, has raised $15M in Series A funding led by the NATO Innovation Fund, with participation from returning investors Sands Capital, In-Q-Tel, IQ Capital, and Episode One. The company develops AI-powered binary analysis technology that helps organizations inspect compiled software without requiring access to source code. Its flagship platform, BinNet, is designed to identify hidden threats, vulnerabilities, and software integrity issues.

The funding will support development of the next generation of BinNet, expansion into additional software categories, a new New York office, and growth from approximately 22 employees to 45. Following a $4.15M seed round in 2025, RevEng.AI has now raised approximately $19.5M in disclosed funding.

The raise arrives as software supply chain attacks continue to increase, AI-generated code becomes more common, and organizations struggle to verify what actually exists inside third-party software, firmware, and executables. More importantly, this is not simply a cybersecurity funding round. It is a signal that software verification is becoming a strategic priority for governments, enterprises, and critical infrastructure operators.

What Happened

Most cybersecurity tools inspect source code. RevEng.AI focuses on something different: the compiled binary that actually gets deployed into production. That distinction sounds technical until you realize how much software today is assembled from third-party libraries, open-source components, vendor products, and increasingly, AI-generated code. Organizations often know what they intended to build. They are far less certain about what ultimately ships.

RevEng.AI's BinNet platform was built to close that gap. The company announced a $15M Series A led by the NATO Innovation Fund, with existing investors Sands Capital, In-Q-Tel, IQ Capital, and Episode One participating in the round. The capital will be used to expand product development, accelerate U.S. growth, open a New York office, and nearly double headcount. The NATO Innovation Fund itself is a €1B+ venture fund backed by 24 NATO member nations and focused on technologies that strengthen security, resilience, and critical infrastructure across allied nations.

Founder and CEO James Patrick-Evans built RevEng.AI around a simple observation: software trust has traditionally depended on assumptions, while software verification requires evidence. Those are not the same thing.

Why This Matters

Cybersecurity has entered a strange phase. Organizations have become remarkably good at protecting systems they control while becoming increasingly dependent on software they do not. Every new vendor relationship introduces another layer of risk. Every software update creates another trust decision. Every AI-generated code segment adds another question mark.

The result is a growing software supply chain security problem. RevEng.AI is attacking that problem from the binary layer. Rather than examining source code repositories, the platform analyzes compiled software to identify hidden backdoors, malicious functionality, unexpected components, vulnerabilities, and suspicious changes between releases. That capability matters because attackers do not compromise architecture diagrams. They compromise what gets deployed.

The funding round suggests investors increasingly view software integrity as infrastructure rather than a feature.

Market Context

Software supply chain security has quietly become one of the most important battlegrounds in cybersecurity. Modern software is rarely written entirely in-house. It is assembled. Components arrive from vendors, open-source communities, contractors, development platforms, and AI-assisted coding tools. Convenience has won. Visibility has not.

Industry research associated with the market shows software supply chain attacks continuing to rise while organizations struggle to keep pace with growing complexity. AI coding tools are also generating an increasing share of new code, creating additional challenges for security teams tasked with validating software integrity. This helps explain why a fund backed by NATO member nations would take interest.

Critical infrastructure, defense systems, financial institutions, telecommunications providers, and government agencies all share a common problem: they depend on software they cannot always fully inspect. RevEng.AI is positioning itself as a verification layer between software creation and software trust.

Competitive Landscape

The cybersecurity industry has no shortage of application security vendors. Most focus on source code scanning, vulnerability management, software composition analysis, or endpoint protection. RevEng.AI occupies a more specialized category centered on binary analysis, giving the company a different perspective on software risk.

Source code can be reviewed, tested, and audited. Yet source code is often unavailable when organizations evaluate commercial software, firmware, or third-party products. Binary analysis becomes one of the few practical methods for understanding what actually exists inside those assets.

RevEng.AI serves customers across defense, national security, financial services, telecommunications, and cybersecurity. That customer mix reflects an important reality: software integrity is no longer exclusively a government concern. It is becoming an enterprise concern.

What This Signals

Investors often reveal market priorities before analysts do. The combination of the NATO Innovation Fund, In-Q-Tel, Sands Capital, IQ Capital, and Episode One points toward a shared thesis: software verification is moving higher on the strategic agenda.

This funding round also reflects a broader shift happening across cybersecurity. Security teams spent years focused on protecting networks. Then they focused on protecting identities. Now attention is increasingly shifting toward protecting trust itself: trust in software, trust in updates, trust in dependencies, and trust in systems that are becoming more autonomous with every development cycle. RevEng.AI sits directly in the middle of that transition.

The Bigger Industry Shift

For decades, software security operated under an implicit assumption: if the development process looked trustworthy, the output probably was too. That assumption is becoming harder to defend. Software ecosystems have become larger, more distributed, more automated, and more dependent on external contributors than at any point in history.

Verification is replacing assumption. Evidence is replacing trust. The significance of RevEng.AI's $15M Series A extends beyond the company itself. The funding reflects growing demand for technologies capable of answering a deceptively simple question: what is actually inside the software running critical systems?

That question is becoming increasingly valuable, and increasingly difficult to ignore.

Frequently Asked Questions

What is RevEng.AI?

RevEng.AI is a London-based cybersecurity company that develops AI-powered binary analysis technology used to inspect compiled software, firmware, and executables without requiring source code access.

Who founded RevEng.AI?

RevEng.AI was founded by James Patrick-Evans, a cybersecurity researcher and entrepreneur focused on software security and binary analysis.

How much funding has RevEng.AI raised?

RevEng.AI raised $15M in Series A funding and has raised approximately $19.5M in disclosed funding to date.

Who invested in RevEng.AI's Series A?

The round was led by the NATO Innovation Fund and included Sands Capital, In-Q-Tel, IQ Capital, and Episode One.

What is BinNet?

BinNet is RevEng.AI's proprietary AI model designed to analyze machine code and identify hidden vulnerabilities, malicious functionality, and software integrity issues.

Why did the NATO Innovation Fund invest in RevEng.AI?

The investment reflects growing demand for technologies that improve software verification, software supply chain security, and critical infrastructure resilience.

How will RevEng.AI use the funding?

The company plans to expand BinNet, grow its workforce, and establish a New York office to accelerate U.S. market expansion.

Why is software supply chain security becoming important?

Organizations increasingly depend on third-party software, open-source components, and AI-generated code, creating new challenges around software trust and verification.