Nebulock, the world’s first autonomous threat hunting platform, announced its official launch along with $8.5 million in total funding. The Seed Round was led by Bain Capital Ventures with participation from Decibel VC, Zetta Venture Partners, In-Q-Tel, and notable angel investors including Andrew Peterson, Nick Galbreath, William Lehmann, Josh Kamdjou, and Andrew Morris.
Designed to redefine how organizations approach cybersecurity, Nebulock continuously hunts across an enterprise’s entire security stack, surfacing false negatives and translating hunts into hardened behavioral detections in minutes. The platform automates what is traditionally a slow and manual process, enabling real-time detection engineering and proactive threat defense.
Threat hunting has long been a reactive, linear process that requires weeks of manual effort even from elite security teams. Nebulock eliminates these inefficiencies by automatically building, testing, and validating hypotheses while empowering defenders to write and refine detections in real time boosting both coverage and speed.
“We’ve never realized proactivity at scale in security. Organizations invest time, people and sweat into ‘proactivity,’ only for attackers to neatly side-step existing controls and achieve their objective. This isn’t a practitioner problem, it’s a systems problem,” said Damien Lewke, founder & CEO, Nebulock. “After 12 years watching teams run a never-ending marathon with moving finish lines, we realized it was time to change the race itself.”
The founder brings over a decade of experience from leading roles at Northrop Grumman, CrowdStrike, and Arctic Wolf. “Transitioning from an operator in the DoD to CrowdStrike taught me how thoughtful architecture could revolutionize endpoint security through clean APIs, scalable detections, and cloud-native backends; lessons that helped shape one of the industry’s most successful platforms,” they added. “Yet across all these experiences, a fundamental challenge persisted: even with the best teams and most advanced tools, threat hunting remained largely reactive.”
Also Read: Booz Allen Uses Vellox Reverser to Automate Malware Analysis
Nebulock’s platform is engineered for behavior-based detection and integrates directly with identity, endpoint, and cloud telemetry. It proactively generates and tests hypotheses, continuously refining its detection logic. By leveraging AI, the system acts like an elite team member operating 24/7, eliminating repetitive manual work, and enhancing the productivity of human analysts regardless of their experience level.
“Think of it as adding a new team member to your security organization: an AI threat hunter with rare, expensive skills who works 24/7, never needs coffee breaks, and makes everyone else’s job easier,” said Damien Lewke, founder & CEO, Nebulock.
Tailored for today’s sophisticated threat landscape, Nebulock excels where traditional tools fall short detecting credential-based attacks, insider threats, and stealthy behaviors by interrogating telemetry often ignored by legacy systems. It delivers clear, actionable insights with evidence citations and response guidance, integrating seamlessly into existing workflows with minimal onboarding time.
Organizations already leveraging Nebulock report significant improvements in detection coverage, operational efficiency, and threat response. In one case, a customer identified a malicious insider executing malware within a best-of-breed security stack something previous tools missed. The threat was surfaced and neutralized instantly, preventing any impact.
As cyber threats grow in complexity and volume, Nebulock aims to shift the industry from reactive alert chasing to proactive, AI-driven defense.
