Bromure Secure Browser, Nessus Origins, Overbearer Proxy, Coding with AI, Fundraising in AI

Renaud Deraison started the Nessus project in 1998 and co-founded Tenable, fundamentally changing how the world handles defensive cybersecurity. Today, he is leveraging AI to build and ship open-source security tools in a matter of weeks. In this episode, we dive into the early days of internet security and hardware scarcity , why the AI revolution might make traditional AppSec obsolete , and the exit pressures of the modern VC landscape. We also explore how deeply technical founders are gaining an "unfair advantage" by knowing exactly how to guide AI agents , plus Renaud shares the hilarious honeypot story that led to his new secure virtualized browser, Bromure. In our in-depth discussion, Renaud shares: (00:00:47) Intro to Renaud, the creator of Nessus and Tenable co-founder. (00:01:59) His 1998 epiphany: building Nessus to catch the internet's worst configuration errors. (00:05:12) How he built parallel processing scanners on just 56MB of RAM. (00:06:48) Inventing CI/CD in 2003 and the underrated feature that drove support teams crazy. (00:10:18) Why he ditched Perl, escaped SATAN’s dependency traps, and birthed NASL. (00:14:04) How he would architect a hyper-efficient Nessus today. (00:21:15) "AppSec is dead": How AI-generated, self-healing infrastructure changes everything. (00:22:44) His 1000x velocity shift: shipping two open-source tools in two weeks. (00:25:09) Bromure: his "anti-Nessus" secure virtualized browser for paranoid link-clicking. (00:26:53) His AI developer playbook: why Claude nails architecture but needs guidance in the weeds. (00:28:16) The chaos of plugging 7 AI agents together so they argue like a corporate committee. (00:33:04) The "Unfair Advantage": why technical founders are destroying the competition in the AI era. (00:37:31) Why software value is hitting zero and how "vibe-coding" internal tools will kill bloated SaaS. (00:40:24) Why Threat Intel companies might be "cooked" by AI economics vs. traditional scraping. (00:42:44) Scamming the scammers: setting up a financial honeypot and the true origin of Bromure. (00:48:19) The SSL blind spot: how treating encrypted data as a "state secret" built a data exfiltration highway. (00:55:57) Overbearer: stopping supply chain attacks by proxying bearer tokens. (01:00:58) $200M seed rounds vs. freedom: the reality of the VC landscape and losing control of your exit. (01:03:00) His Vulnerability Hall of Fame: riding the chaos of WannaCry, Heartbleed, and Log4Shell. Renauld’s projects mentioned in this episode: Bromure: A secure, fully virtualized macOS web browser designed for safely opening untrusted links and investigating potential phishing attempts in a sandboxed environment. https://bromure.io/en Overbearer: A security proxy that protects internal automation and systems against supply chain attacks by masking real API keys and bearer tokens. https://overbearer.io Follow the hosts & guests: Renaud’s LinkedIn :   / rderaison   Mehul’s LinkedIn / X / Substack   / mehul-revankar   https://x.com/mehulrevankar https://substack.com/@mehulrevankar Follow the podcast on YouTube: ‪@Noise2SignalShow‬