Code Intelligence: Funding, Team & Investors

About

Based in Bonn, Germany, Code Intelligence develops an automated application security testing platform that utilizes fuzzing to help developers identify software vulnerabilities early in the development lifecycle. The enterprise software integrates directly into standard developer workflows at the pull request stage and natively supports multiple programming languages. Alongside its commercial subscription model, the firm maintains open-source testing technologies like Jazzer, which integrates with Google's OSS-Fuzz. The company provides its enterprise security solutions to several prominent corporate customers, including Bosch, Continental, and Deutsche Telekom. Code Intelligence has raised approximately $15.7 million in total equity funding, highlighted by a $12 million Series A investment round led by Tola Capital in 2022. The organization was founded in 2018 by Sergej Dechand, Khaled Yakdan, and Matthew Smith as a spin-out from their academic research at the University of Bonn.

Financial History

Code Intelligence has raised $14.8M across 3 funding rounds. Most recently, it raised $12.0M Series A in May 2022.

Raised

$14.8M

3 funding rounds

Funding Rounds Raised

$14.8M raised

Date	Round	Lead Investors	Other Investors	Status
May 1, 2022	$12M Series A	Will Coggins	Verve Ventures, Thomas Dohmke, High Tech Grunderfonds, LBBW, Occident	Announced
Jun 1, 2020	$2M Series A	LBBW Venture Capital	Verve Ventures, Thomas Dohmke, Occident	Announced
Sep 25, 2018	$820K Seed	—	Digital HUB Bonn, High Tech Grunderfonds	Announced

Deep Dive

Code Intelligence is a Bonn‑based technology company that builds AI‑automated fuzzing and application‑security testing tools to help developers and security teams find and fix software vulnerabilities early in CI/CD pipelines[5][6].

High‑Level Overview

Mission: Make modern security testing ubiquitous and developer‑friendly so teams can ship secure, reliable software by integrating automated fuzz testing into normal development workflows[5][6]. [5][6]
Investment firm (if viewed through investor lens): Code Intelligence is a portfolio company backed since 2018 by High‑Tech Gründerfonds and later by investors including Tola Capital, Verve Ventures, LBBW and angel investor Thomas Dohmke (GitHub CEO); the company has raised a Series A (~$12M) to scale its dev‑first security product[1][2][3][5]. [1][2][3][5]
Key sectors: Application security, software testing, embedded/automotive software security and developer tooling for CI/CD environments[3][5][6]. [3][5][6]
Impact on the startup ecosystem: By open‑sourcing core components and integrating with OSS fuzzing initiatives, Code Intelligence helps raise baseline security practices across both startups and large enterprises while attracting security‑focused engineering talent and partnerships with OEMs and platform providers[5][6]. [5][6]

For a portfolio company (product summary)

Product: CI Fuzz — an AI‑augmented, feedback‑based fuzz testing platform offered both as open‑source components and enterprise features integrated into CI pipelines[5][6]. [5][6]
Customers: Developers, security teams and enterprises in industries with safety/compliance needs (examples noted include Continental, CARIAD, Bosch and Deutsche Telekom)[6][5]. [6][5]
Problem solved: Automates discovery and repro of deep functional bugs and security vulnerabilities that traditional testing often misses, and makes fuzzing usable for developers without deep security expertise[5][1]. [5][1]
Growth momentum: Raised a Series A (~$12M) with participation from strategic investors and angels, added enterprise customers in automotive and telecom, and contributed detectors to Google’s OSS‑Fuzz—indicators of product‑market traction and ecosystem recognition[2][5][1]. [2][5][1]

Origin Story

Founding and founders: Code Intelligence was founded by security researchers/engineers including Sergej Dechand, Henning Perl and Khaled Yakdan; the company builds on university research in feedback‑based fuzzing[3][5]. [3][5]
How the idea emerged: The founders aimed to operationalize advanced fuzzing research into tools that make automated security testing accessible to general developer teams, addressing the setup complexity and expertise barrier of traditional fuzzing workflows[5][1]. [5][1]
Early traction / pivotal moments: Investment from High‑Tech Gründerfonds in 2018 helped commercialize the product[1]; later Series A funding and the inclusion of their Log4j detectors into Google’s OSS‑Fuzz were notable milestones showing both commercial and community impact[1][2][5]. [1][2][5]

Core Differentiators

Developer‑first UX: Emphasis on making fuzz testing as simple as a pull request, lowering the barrier for developers to run continuous security tests[5][6]. [5][6]
AI / feedback‑based fuzzing: Uses instrumentation and feedback loops (white‑box techniques) to generate smarter test inputs and find deep bugs that random testing misses[4][5]. [4][5]
Open‑source + enterprise model: Publishes core technologies to the community while offering enterprise integrations (bug reporting, vulnerability management, IDE/CI/CD plugins) for large customers[5][4]. [5][4]
Industry and compliance focus: Demonstrated utility in regulated/safety contexts (automotive ASPICE, ISO 21434 cited by customers) and partnerships with large OEMs and infrastructure firms[6][5]. [6][5]
Ecosystem contributions: Contributed detectors to Google’s OSS‑Fuzz and found bugs in popular open‑source projects, strengthening credibility with security researchers and maintainers[5]. [5]

Role in the Broader Tech Landscape

Trend alignment: Rides the convergence of DevSecOps, AI automation, and supply‑chain security, where shifting left (testing earlier in development) and continuous automated testing are dominant industry trends[6][5]. [6][5]
Timing: Increasing regulatory and safety requirements (e.g., automotive cybersecurity standards) and rising cost of breaches make automated, reproducible vulnerability discovery more valuable for engineering orgs[6][5]. [6][5]
Market forces in their favor: Widespread adoption of CI/CD, the proliferation of complex third‑party components, and enterprise demand for scalable security tooling create strong TAM for automated fuzzing solutions[5][3]. [5][3]
Influence on ecosystem: By open‑sourcing parts of its stack and integrating with OSS fuzzing initiatives, Code Intelligence helps normalize advanced testing practices across both startups and large organizations, raising the security floor for many projects[5]. [5]

Quick Take & Future Outlook

What’s next: Expect continued productization of AI and automation in fuzzing (better prioritization, root‑cause explanations, faster repro), deeper CI+IDE integrations, and expansion into regulated verticals like automotive and IoT where reproducible testing is mission‑critical[6][5][2]. [6][5][2]
Trends that will shape them: Increased regulatory scrutiny of software safety, greater enterprise demand for developer‑first security tooling, and continued maturation of open‑source fuzzing ecosystems will all create opportunities and validation for their approach[6][5]. [6][5]
How influence might evolve: If Code Intelligence scales enterprise adoption while continuing community contributions, it can become a de‑facto standard for automated fuzzing in CI workflows and a key partner for companies aiming to certify safety and security compliance[5][1]. [5][1]

Quick take: Code Intelligence has positioned itself at the intersection of academic fuzzing advances, developer‑friendly tooling, and enterprise compliance needs—its open‑source roots plus VC and strategic backers suggest it’s well placed to drive broader adoption of continuous, automated security testing across software stacks[5][2][1].[5][2][1]

Frequently Asked Questions

How much funding has Code Intelligence raised?

Code Intelligence has raised $14.8M in total across 3 funding rounds.

Who are Code Intelligence's investors?

Code Intelligence's investors include Will Coggins, Verve Ventures, Thomas Dohmke, High-Tech Grunderfonds, LBBW, OCCIDENT, LBBW Venture Capital, Digital Hub Bonn.

Deep Dive

High‑Level Overview

Mission: Make modern security testing ubiquitous and developer‑friendly so teams can ship secure, reliable software by integrating automated fuzz testing into normal development workflows[5][6]. [5][6]
Investment firm (if viewed through investor lens): Code Intelligence is a portfolio company backed since 2018 by High‑Tech Gründerfonds and later by investors including Tola Capital, Verve Ventures, LBBW and angel investor Thomas Dohmke (GitHub CEO); the company has raised a Series A (~$12M) to scale its dev‑first security product[1][2][3][5]. [1][2][3][5]
Key sectors: Application security, software testing, embedded/automotive software security and developer tooling for CI/CD environments[3][5][6]. [3][5][6]
Impact on the startup ecosystem: By open‑sourcing core components and integrating with OSS fuzzing initiatives, Code Intelligence helps raise baseline security practices across both startups and large enterprises while attracting security‑focused engineering talent and partnerships with OEMs and platform providers[5][6]. [5][6]

For a portfolio company (product summary)

Product: CI Fuzz — an AI‑augmented, feedback‑based fuzz testing platform offered both as open‑source components and enterprise features integrated into CI pipelines[5][6]. [5][6]
Customers: Developers, security teams and enterprises in industries with safety/compliance needs (examples noted include Continental, CARIAD, Bosch and Deutsche Telekom)[6][5]. [6][5]
Problem solved: Automates discovery and repro of deep functional bugs and security vulnerabilities that traditional testing often misses, and makes fuzzing usable for developers without deep security expertise[5][1]. [5][1]
Growth momentum: Raised a Series A (~$12M) with participation from strategic investors and angels, added enterprise customers in automotive and telecom, and contributed detectors to Google’s OSS‑Fuzz—indicators of product‑market traction and ecosystem recognition[2][5][1]. [2][5][1]

Origin Story

Founding and founders: Code Intelligence was founded by security researchers/engineers including Sergej Dechand, Henning Perl and Khaled Yakdan; the company builds on university research in feedback‑based fuzzing[3][5]. [3][5]
How the idea emerged: The founders aimed to operationalize advanced fuzzing research into tools that make automated security testing accessible to general developer teams, addressing the setup complexity and expertise barrier of traditional fuzzing workflows[5][1]. [5][1]
Early traction / pivotal moments: Investment from High‑Tech Gründerfonds in 2018 helped commercialize the product[1]; later Series A funding and the inclusion of their Log4j detectors into Google’s OSS‑Fuzz were notable milestones showing both commercial and community impact[1][2][5]. [1][2][5]

Core Differentiators

Developer‑first UX: Emphasis on making fuzz testing as simple as a pull request, lowering the barrier for developers to run continuous security tests[5][6]. [5][6]
AI / feedback‑based fuzzing: Uses instrumentation and feedback loops (white‑box techniques) to generate smarter test inputs and find deep bugs that random testing misses[4][5]. [4][5]
Open‑source + enterprise model: Publishes core technologies to the community while offering enterprise integrations (bug reporting, vulnerability management, IDE/CI/CD plugins) for large customers[5][4]. [5][4]
Industry and compliance focus: Demonstrated utility in regulated/safety contexts (automotive ASPICE, ISO 21434 cited by customers) and partnerships with large OEMs and infrastructure firms[6][5]. [6][5]
Ecosystem contributions: Contributed detectors to Google’s OSS‑Fuzz and found bugs in popular open‑source projects, strengthening credibility with security researchers and maintainers[5]. [5]

Role in the Broader Tech Landscape

Trend alignment: Rides the convergence of DevSecOps, AI automation, and supply‑chain security, where shifting left (testing earlier in development) and continuous automated testing are dominant industry trends[6][5]. [6][5]
Timing: Increasing regulatory and safety requirements (e.g., automotive cybersecurity standards) and rising cost of breaches make automated, reproducible vulnerability discovery more valuable for engineering orgs[6][5]. [6][5]
Market forces in their favor: Widespread adoption of CI/CD, the proliferation of complex third‑party components, and enterprise demand for scalable security tooling create strong TAM for automated fuzzing solutions[5][3]. [5][3]
Influence on ecosystem: By open‑sourcing parts of its stack and integrating with OSS fuzzing initiatives, Code Intelligence helps normalize advanced testing practices across both startups and large organizations, raising the security floor for many projects[5]. [5]

Quick Take & Future Outlook

What’s next: Expect continued productization of AI and automation in fuzzing (better prioritization, root‑cause explanations, faster repro), deeper CI+IDE integrations, and expansion into regulated verticals like automotive and IoT where reproducible testing is mission‑critical[6][5][2]. [6][5][2]
Trends that will shape them: Increased regulatory scrutiny of software safety, greater enterprise demand for developer‑first security tooling, and continued maturation of open‑source fuzzing ecosystems will all create opportunities and validation for their approach[6][5]. [6][5]
How influence might evolve: If Code Intelligence scales enterprise adoption while continuing community contributions, it can become a de‑facto standard for automated fuzzing in CI workflows and a key partner for companies aiming to certify safety and security compliance[5][1]. [5][1]

Code Intelligence

About

Recent News & Mentions

Financial History

Funding Rounds Raised

Financial History

Deep Dive

Sources

Frequently Asked Questions

Frequently Asked Questions

Financial History

Funding Rounds Raised

Deep Dive

Sources

Recent News & Mentions

Frequently Asked Questions