DefectDojo, a leader in scalable application security, has secured $7 million in funding to advance its mission of connecting security strategy with execution for smarter risk management. The funding round, led by Iolar Ventures and Aspenwood Ventures, will be used to drive innovation, product development, and market expansion.
With over 38 million downloads and integrations with more than 180 security tools, DefectDojo is a critical platform for application security and vulnerability management. It serves a diverse range of users, including Fortune 10 companies, international banks, government agencies, startups, and solo consultants. DefectDojo is distinguished as the only open-source solution in the Application Security Posture Management (ASPM) space, offering a comprehensive approach to managing and improving an organization’s security posture.
DefectDojo’s platform aggregates data from various security tools, automates workflows, and delivers actionable insights to ensure vulnerabilities are effectively identified, tracked, and mitigated across all stages of an organization’s operations. The platform’s advanced machine-learning algorithms help consolidate duplicates, eliminate false positives, and identify vulnerability trends with precision.
“This investment validates our commitment to transforming how organizations approach AppSec and security at large,” said Greg Anderson, Founder & CEO of DefectDojo. Anderson emphasized that the open-source community, which began over ten years ago, was established to reduce repetitive tasks and enable security professionals to operate strategically in an evolving threat landscape.
DefectDojo has recently introduced several enhancements to its Pro Edition, building on the Community Edition by offering enterprise scalability, improved visualization, and premium support. The new features include:
- Enhanced Automation: Streamlined AppSec workflows and reduced manual tasks.
- New Insights and Analytics Tools: Increased understanding of vulnerabilities and data-driven security decisions through enhanced remediation, tool, and program insights.
- Data Enrichment: More comprehensive vulnerability context with FIRST’s Exploit Prediction Scoring System, improving the quality of intelligence on threats and vulnerabilities.
DefectDojo remains committed to its open-source roots, continuing to invest in the community-driven platform that has made it one of the fastest-growing open-source security projects.
“DefectDojo’s expertise and the passionate community it has developed are fundamentally changing the way security is handled within organizations,” said Lars Leckie, Managing Director of Aspenwood Ventures. Leckie highlighted DefectDojo’s unique blend of open-source innovation and enterprise-grade capabilities, which enable seamless collaboration between development, security, and leadership teams.
With this new funding, DefectDojo is poised to continue its leadership in the AppSec space, driving innovation and enabling organizations to scale their security efforts effectively.
