Alternatives to LLM Guard

Compare LLM Guard alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to LLM Guard in 2026. Compare features, ratings, user reviews, pricing, and more from LLM Guard competitors and alternatives in order to make an informed decision for your business.

  • 1
    SOCRadar Extended Threat Intelligence
    SOCRadar provides a unified, cloud-hosted platform designed to enrich your cyber threat intelligence by contextualizing it with data from your attack surface, digital footprint, dark web exposure, and supply chain. We help security teams see what attackers see by combining External Attack Surface Management, Cyber Threat Intelligence, and Digital Risk Protection into a single, easy-to-use solution. This enables your organization to discover hidden vulnerabilities, detect data leaks, and shut down threats like phishing and brand impersonation before they can harm your business. By combining these critical security functions, SOCRadar replaces the need for separate, disconnected tools. Our holistic approach offers a streamlined, modular experience, providing a complete, real-time view of your threat landscape to help you stay ahead of attackers.
    Compare vs. LLM Guard View Software
    Visit Website
  • 2
    ZenGuard AI

    ZenGuard AI

    ZenGuard AI

    ZenGuard AI is a security platform designed to protect AI-driven customer experience agents from potential threats, ensuring they operate safely and effectively. Developed by experts from leading tech companies like Google, Meta, and Amazon, ZenGuard provides low-latency security guardrails that mitigate risks associated with large language model-based AI agents. Safeguards AI agents against prompt injection attacks by detecting and neutralizing manipulation attempts, ensuring secure LLM operation. Identifies and manages sensitive information to prevent data leaks and ensure compliance with privacy regulations. Enforces content policies by restricting AI agents from discussing prohibited subjects, maintaining brand integrity and user safety. The platform also provides a user-friendly interface for policy configuration, enabling real-time updates to security settings.
    Starting Price: $20 per month
  • 3
    CyCraft XecGuard
    XecGuard is CyCraft’s LLM Firewall for trustworthy, agentic AI, designed to protect enterprise AI systems from prompt injection, jailbreak, prompt extraction, data leakage, unsafe outputs, and agentic workflow risks. Built on CyCraft’s red teaming and blue teaming experience across government, finance, and high-tech manufacturing, XecGuard goes beyond model-level defenses by combining AI guardrails, cybersecurity controls, compliance protection, and risk response strategies for real-world enterprise AI adoption. It is positioned as a plug-and-play LoRA security module that can strengthen LLM defenses without requiring changes to the underlying model architecture, helping teams add protection quickly while preserving performance. XecGuard is built on proprietary security datasets and multi-stage fine-tuning techniques, enabling LLMs to better resist adversarial prompts, malicious manipulation, and attempts to extract protected instructions or sensitive information.
  • 4
    Alice

    Alice

    Alice

    Alice (formerly ActiveFence) is a security, safety, and trust platform built to protect AI systems and online platforms in the GenAI era. Powered by the world’s largest adversarial intelligence dataset, Alice safeguards over 3 billion users across more than 120 languages. Its Rabbit Hole intelligence engine continuously analyzes billions of toxic and manipulative data samples to detect emerging threats in real time. The WonderSuite platform includes tools like WonderBuild for pre-launch stress testing, WonderFence for runtime guardrails, and WonderCheck for automated red-teaming. By defending against prompt injection, jailbreaks, governance gaps, and harmful AI behavior, Alice enables enterprises and foundation model labs to innovate with confidence.
  • 5
    Cisco AI Defense
    Cisco AI Defense is a comprehensive security solution designed to enable enterprises to safely develop, deploy, and utilize AI applications. It addresses critical security challenges such as shadow AI—unauthorized use of third-party generative AI apps—and application security by providing full visibility into AI assets and enforcing controls to prevent data leakage and mitigate threats. Key components include AI Access, which offers control over third-party AI applications; AI Model and Application Validation, which conducts automated vulnerability assessments; AI Runtime Protection, which implements real-time guardrails against adversarial attacks; and AI Cloud Visibility, which inventories AI models and data sources across distributed environments. Leveraging Cisco's network-layer visibility and continuous threat intelligence updates, AI Defense ensures robust protection against evolving AI-related risks.
  • 6
    Enkrypt AI

    Enkrypt AI

    Enkrypt AI

    Enkrypt AI is an enterprise AI security, compliance, and governance platform purpose-built to secure LLMs, AI agents, multimodal systems, and MCP workflows. Serving enterprises in finance, healthcare, insurance, and government, Enkrypt AI helps organizations ship fast, ship safe, and stay ahead. The platform covers the full AI security lifecycle: Guardrails: Ultra-low latency (sub-50ms) policy-based guardrails prevent prompt injection, sensitive data exposure, unsafe outputs, and non-compliant agent behavior in real time. Red Teaming: Policy-driven, multimodal attack simulation across LLMs and AI agents before deployment. MCP Security: MCP Scan Hub and Secure MCP Gateway protect MCP servers, tools, and agent toolchains end-to-end. Compliance: Continuous monitoring against NIST AI RMF, OWASP LLM Top 10, EU AI Act, HIPAA, and FINRA. ISO 27001 & SOC 2 Type II certified. Gartner Cool Vendor 2025.
  • 7
    Lakera

    Lakera

    Lakera

    Lakera Guard empowers organizations to build GenAI applications without worrying about prompt injections, data loss, harmful content, and other LLM risks. Powered by the world's most advanced AI threat intelligence. Lakera’s threat intelligence database contains tens of millions of attack data points and is growing by 100k+ entries every day. With Lakera guard, your defense continuously strengthens. Lakera guard embeds industry-leading security intelligence at the heart of your LLM applications so that you can build and deploy secure AI systems at scale. We observe tens of millions of attacks to detect and protect you from undesired behavior and data loss caused by prompt injection. Continuously assess, track, report, and responsibly manage your AI systems across the organization to ensure they are secure at all times.
  • 8
    Pangea

    Pangea

    Pangea

    Pangea is the first Security Platform as a Service (SPaaS) delivering comprehensive security functionality which app developers can leverage with a simple call to Pangea’s APIs. The platform offers foundational security services such as Authentication, Authorization, Audit Logging, Secrets Management, Entitlement and Licensing. Other security functions include PII Redaction, Embargo, as well as File, IP, URL and Domain intelligence. Just as you would use AWS for compute, Twilio for communications, or Stripe for payments - Pangea provides security functions directly into your apps. Pangea unifies security for developers, delivering a single platform where API-first security services are streamlined and easy for any developer to deliver secure user experiences.
  • 9
    Akto

    Akto

    Akto

    Akto is an open source API security in CI/CD platform. Key features of Akto include: 1. API Discovery 2. API Security Testing 3. Sensitive Data Exposure 4. API Security Posture Management 5. Authentication and Authorization 6. API Security in DevSecOps Akto helps developers and security teams secure APIs in their CI/CD by continuously discovering and testing APIs for vulnerabilities. Akto's pricing is transparent on website. Free tier is available. You can deploy both self-hosted and in cloud. It takes only few mins to deploy and see results. Akto can integrate with multiple traffic sources - Burpsuite, AWS, postman, GCP, gateways, etc.
  • 10
    Vireo Sentinel
    Vireo Sentinel is an AI visibility and governance platform. A lightweight browser extension monitors how your team uses ChatGPT, Claude, Perplexity, Gemini, and 40+ other AI platforms. When someone is about to share sensitive data, they see a real-time intervention with four options: cancel, redact, edit, or override with a business justification. Detection uses deterministic pattern matching across 100+ sensitive data types including personal information, financial data, credentials, and medical content. No AI is used for detection. Everything is processed in the browser - sensitive data never leaves the device. The admin dashboard shows usage patterns, risk trends, platform breakdowns, and activity heatmaps. One-click compliance reports map to EU AI Act, ISO 42001, and Australian Privacy Act requirements. Deploys in under 10 minutes via browser extension for Chrome, Firefox, and Edge.
    Starting Price: $55/month (5 Users)
  • 11
    Llama Guard
    Llama Guard is an open-source safeguard model developed by Meta AI to enhance the safety of large language models in human-AI conversations. It functions as an input-output filter, classifying both prompts and responses into safety risk categories, including toxicity, hate speech, and hallucinations. Trained on a curated dataset, Llama Guard achieves performance on par with or exceeding existing moderation tools like OpenAI's Moderation API and ToxicChat. Its instruction-tuned architecture allows for customization, enabling developers to adapt its taxonomy and output formats to specific use cases. Llama Guard is part of Meta's broader "Purple Llama" initiative, which combines offensive and defensive security strategies to responsibly deploy generative AI models. The model weights are publicly available, encouraging further research and adaptation to meet evolving AI safety needs.
  • 12
    garak

    garak

    garak

    garak checks if an LLM can be made to fail in a way we don't want. garak probes for hallucination, data leakage, prompt injection, misinformation, toxicity generation, jailbreaks, and many other weaknesses. garak's a free tool, we love developing it and are always interested in adding functionality to support applications. garak is a command-line tool, it's developed in Linux and OSX. Just grab it from PyPI and you should be good to go. The standard pip version of garak is updated periodically. garak has its own dependencies, you can to install garak in its own Conda environment. garak needs to know what model to scan, and by default, it'll try all the probes it knows on that model, using the vulnerability detectors recommended by each probe. For each probe loaded, garak will print a progress bar as it generates. Once the generation is complete, a row evaluating that probe's results on each detector is given.
  • 13
    Wardstone

    Wardstone

    JRL Software LTD

    Wardstone is an LLM security API that sits between applications and language model providers, scanning inputs and outputs for threats across four categories in a single call: prompt attacks, content violations, data leakage, and unknown links. It detects jailbreaks, prompt injections, harmful content (hate, violence, self-harm), PII (SSNs, credit cards, emails, phone numbers), and suspicious URLs. Each response returns risk bands per category with sub-30ms latency. Works with any LLM provider. REST API with SDKs for TypeScript, Python, Go, Ruby, PHP, Java, and C#. Free tier at 10,000 calls/month, no credit card required. Includes a browser-based playground for testing.
    Starting Price: $0/month
  • 14
    Plurilock AI PromptGuard

    Plurilock AI PromptGuard

    Plurilock Security

    Plurilock AI PromptGuard is a new, patent-pending security tool designed to protect companies against data leaks while their employees use generative AI platforms like ChatGPT. Unlike other solutions to the generative AI data leakage problem, PromptGuard doesn't block AI use or individual AI prompts. Instead, PromptGuard relies on a mature DLP engine to detect sensitive data in prompts and anonymize it before it is sent to the AI platform. When the AI platform returns an answer, PromptGuard restores the original references before showing them to the user. This preserves the workflow and query flow of AI, enabling users to productively use it, while keeping sensitive data out of the AI platform's hands. PromptGuard also provides a complete, bi-directional audit log of queries and replies for each user, enabling companies to create a compliance-friendly record of what was sent to AI, and what AI sent back.
  • 15
    LangWatch

    LangWatch

    LangWatch

    Guardrails are crucial in AI maintenance, LangWatch safeguards you and your business from exposing sensitive data, prompt injection and keeps your AI from going off the rails, avoiding unforeseen damage to your brand. Understanding the behaviour of both AI and users can be challenging for businesses with integrated AI. Ensure accurate and appropriate responses by constantly maintaining quality through oversight. LangWatch’s safety checks and guardrails prevent common AI issues including jailbreaking, exposing sensitive data, and off-topic conversations. Track conversion rates, output quality, user feedback and knowledge base gaps with real-time metrics — gain constant insights for continuous improvement. Powerful data evaluation allows you to evaluate new models and prompts, develop datasets for testing and run experimental simulations on tailored builds.
    Starting Price: €99 per month
  • 16
    F5 AI Guardrails
    F5 AI Guardrails is a runtime AI security solution designed to protect AI models, applications, agents, and connected data throughout deployment and operation. The platform helps organizations defend against adversarial threats such as prompt injection, jailbreak attacks, harmful outputs, and unauthorized AI behavior. It provides real-time monitoring and enforcement of security policies to prevent data leakage, compliance violations, and misuse of AI systems. Organizations can implement predefined guardrails or create customized policies tailored to specific business requirements and AI use cases. The platform also delivers observability, auditing, and governance capabilities that help organizations maintain visibility into AI interactions and regulatory compliance. By combining threat protection, data security, and AI governance, F5 AI Guardrails helps enterprises operate AI systems more safely and responsibly.
  • 17
    ZeroTrusted.ai

    ZeroTrusted.ai

    ZeroTrusted.ai

    Large Language Models (LLMs) learn from vast datasets, which might include your sensitive information. This presents risks of unintentional data exposure and exploitation by unethical LLM providers or malicious actors. ZeroTrusted.ai’s LLM Firewall is designed to protect you from these threats. Our sanitization model is intelligent enough to detect GDPR, PHI, PII, PCI data etc. It’s constantly trained with compliance requirements data for from NIST. That way you fulfill your compliance requirement while automating the process. There are plenty other features like for prompt optimization, reducing hallucinations and data injection using our LLM ensemble technique and lots of other feature. These features are only available on the business plan however.
    Starting Price: $19.99 per month
  • 18
    Guardrails AI

    Guardrails AI

    Guardrails AI

    With our dashboard, you are able to go deeper into analytics that will enable you to verify all the necessary information related to entering requests into Guardrails AI. Unlock efficiency with our ready-to-use library of pre-built validators. Optimize your workflow with robust validation for diverse use cases. Empower your projects with a dynamic framework for creating, managing, and reusing custom validators. Where versatility meets ease, catering to a spectrum of innovative applications easily. By verifying and indicating where the error is, you can quickly generate a second output option. Ensures that outcomes are in line with expectations, precision, correctness, and reliability in interactions with LLMs.
  • 19
    Simaril

    Simaril

    Simaril

    Silmaril is a self-healing prompt injection defense designed to protect AI systems from increasingly complex, multi-step attacks that traditional guardrails fail to stop. It operates by wrapping inference calls and evaluating whether an execution sequence is leading toward a harmful outcome, rather than simply filtering inputs. It uses a multihead classifier that analyzes user intent, application context, and execution states together, enabling it to detect indirect injection, multi-turn attack chains, context poisoning, and tool abuse before damage occurs. Silmaril continuously strengthens its defenses through autonomous threat hunting agents that probe systems, discover vulnerabilities, and generate synthetic training data from real attack scenarios. These insights are used to retrain the model automatically, deploying updated protections in under an hour and propagating anonymized defenses across all deployments.
  • 20
    WebOrion Protector Plus
    WebOrion Protector Plus is a GPU-powered GenAI firewall engineered to provide mission-critical protection for generative AI applications. It offers real-time defenses against evolving threats such as prompt injection attacks, sensitive data leakage, and content hallucinations. Key features include prompt injection attack protection, safeguarding intellectual property and personally identifiable information (PII) from exposure, content moderation and validation to ensure accurate and on-topic LLM responses, and user input rate limiting to mitigate risks of security vulnerability exploitation and unbounded consumption. At the core of its capabilities is ShieldPrompt, a multi-layered defense system that utilizes context evaluation through LLM analysis of user prompts, canary checks by embedding fake prompts to detect potential data leaks, pand revention of jailbreaks using Byte Pair Encoding (BPE) tokenization with adaptive dropout.
  • 21
    AQtive Guard

    AQtive Guard

    SandboxAQ

    AQtive Guard is a cybersecurity platform that helps organizations secure and manage cryptographic assets and non-human identities (NHIs) such as AI agents, keys, certificates, algorithms, and machine identities across their entire IT environment. It delivers continuous discovery and real-time visibility into NHIs and cryptography, integrating with existing security tools, cloud providers, and repositories to provide a unified view of security posture. Using advanced AI and large quantitative models, the platform analyzes vulnerabilities, prioritizes risks, and offers actionable insights with automated remediation workflows to fix issues and enforce policies such as credential rotation or certificate renewal. AQtive Guard supports compliance with evolving standards, including new NIST cryptographic protocols, and enables lifecycle management of cryptographic assets to reduce risk from current and future threats.
  • 22
    Amazon Bedrock Guardrails
    Amazon Bedrock Guardrails is a configurable safeguard system designed to enhance the safety and compliance of generative AI applications built on Amazon Bedrock. It enables developers to implement customized safety, privacy, and truthfulness controls across various foundation models, including those hosted within Amazon Bedrock, fine-tuned models, and self-hosted models. Guardrails provide a consistent approach to enforcing responsible AI policies by evaluating both user inputs and model responses based on defined policies. These policies include content filters for harmful text and image content, denial of specific topics, word filters for undesirable terms, sensitive information filters to redact personally identifiable information, and contextual grounding checks to detect and filter hallucinations in model responses.
  • 23
    Constellation Gate AI

    Constellation Gate AI

    Constellation Gate AI

    Constellation Gate AI is a drop-in defense layer for AI agents, built to sit between the agent and the model while screening every request for attacks and leaks. Gate acts as an inline gateway for coding agents and model APIs, protecting workflows without requiring major code changes. Users can point existing tools such as Claude Code, Cursor, OpenClaw, Codex, or OpenCode at Gate and inherit prompt-injection defense, secret scanning, PII redaction, token optimization, and a verifiable audit trail. The platform is designed around three real risks: prompt injection, credential and PII leakage, and hijacked tool calls. Instead of relying on the model to defend itself, Gate blocks attacks before they reach the model, redacts secrets before responses return, and stops attacker-controlled tool outputs before an agent acts on them. Gate accepts the same calls an agent already makes, forwards them to the model, scans every call and response in both directions.
  • 24
    Overseer AI

    Overseer AI

    Overseer AI

    Overseer AI is a platform designed to ensure AI-generated content is safe, accurate, and aligned with user-defined policies. It offers compliance enforcement by automating adherence to regulatory standards through custom policy rules, real-time content moderation to block harmful, toxic, or biased outputs from AI, debugging AI outputs by testing and monitoring responses against custom safety policies, policy-driven AI governance by applying centralized safety rules across all AI interactions, and trust-building for AI by guaranteeing safe, accurate, and brand-compliant outputs. The platform caters to various industries, including healthcare, finance, legal technology, customer support, education technology, and ecommerce & retail, providing tailored solutions to ensure AI responses align with industry-specific regulations and standards. Developers can access comprehensive guides and API references to integrate Overseer AI into their applications.
    Starting Price: $99 per month
  • 25
    Deepchecks

    Deepchecks

    Deepchecks

    Release high-quality LLM apps quickly without compromising on testing. Never be held back by the complex and subjective nature of LLM interactions. Generative AI produces subjective results. Knowing whether a generated text is good usually requires manual labor by a subject matter expert. If you’re working on an LLM app, you probably know that you can’t release it without addressing countless constraints and edge-cases. Hallucinations, incorrect answers, bias, deviation from policy, harmful content, and more need to be detected, explored, and mitigated before and after your app is live. Deepchecks’ solution enables you to automate the evaluation process, getting “estimated annotations” that you only override when you have to. Used by 1000+ companies, and integrated into 300+ open source projects, the core behind our LLM product is widely tested and robust. Validate machine learning models and data with minimal effort, in both the research and the production phases.
    Starting Price: $1,000 per month
  • 26
    LangDB

    LangDB

    LangDB

    LangDB offers a community-driven, open-access repository focused on natural language processing tasks and datasets for multiple languages. It serves as a central resource for tracking benchmarks, sharing tools, and supporting the development of multilingual AI models with an emphasis on openness and cross-linguistic representation.
    Starting Price: $49 per month
  • 27
    NVIDIA NeMo Guardrails
    NVIDIA NeMo Guardrails is an open-source toolkit designed to enhance the safety, security, and compliance of large language model-based conversational applications. It enables developers to define, orchestrate, and enforce multiple AI guardrails, ensuring that generative AI interactions remain accurate, appropriate, and on-topic. The toolkit leverages Colang, a specialized language for designing flexible dialogue flows, and integrates seamlessly with popular AI development frameworks like LangChain and LlamaIndex. NeMo Guardrails offers features such as content safety, topic control, personal identifiable information detection, retrieval-augmented generation enforcement, and jailbreak prevention. Additionally, the recently introduced NeMo Guardrails microservice simplifies rail orchestration with API-based interaction and tools for enhanced guardrail management and maintenance.
  • 28
    FortiNDR

    FortiNDR

    Fortinet

    FortiNDR identifies cybersecurity incidents in-progress based on anomalous network activity, speeding incident investigation and response. FortiNDR enables full-lifecycle network protection, detection, and response. It leverages AI, ML, behavioral, and human analysis to analyze network traffic so security teams can spot attacker behavior and remediate the threat. FortiNDR provides network-traffic and file-based analysis, root-cause identification, scope of incidents, and the tools to remediate incidents quickly. FortiNDR includes our Virtual Security Analyst that can identify malicious network activity and files, resulting in real-time identification of advanced threats, including zero-day attacks. FortiNDR Cloud combines ML/AI with human analysis and expertise to improve your security posture and reduce false positives. Seasoned, advanced threat researchers from FortiGuard Labs monitor cybercriminal activity, perform reverse engineering, and continuously update detection rules.
  • 29
    Codacy

    Codacy

    Codacy

    Codacy is a comprehensive platform for code quality and security that helps development teams build secure, maintainable, and compliant software. It integrates across the entire development lifecycle, from IDE to production, providing real-time feedback and automated checks. Codacy analyzes code repositories, enforces quality standards, and detects vulnerabilities before deployment. With AI Guardrails, it also protects against risks introduced by AI-generated code. The platform centralizes rules and policies, ensuring consistency across teams and projects. Developers benefit from automated pull request checks, test coverage tracking, and actionable insights. Overall, Codacy enables faster development without compromising security or code quality.
    Starting Price: $21/user/month
  • 30
    CrowdStrike Falcon AIDR
    CrowdStrike Falcon AI Detection and Response (AIDR) is an enterprise security platform designed to protect the rapidly expanding AI attack surface by delivering real-time visibility, detection, and response across AI systems, users, and interactions. It provides unified visibility into how employees and AI agents use generative AI by mapping relationships between users, prompts, models, agents, and supporting infrastructure, while capturing detailed runtime logs for monitoring, compliance, and investigation. It continuously monitors AI activity across endpoints, cloud environments, and applications, enabling organizations to understand how data flows through AI systems and how agents operate within defined boundaries. AIDR detects and blocks AI-specific threats such as prompt injection, jailbreak attempts, malicious entities, harmful outputs, and unauthorized interactions, using behavioral analysis and integrated threat intelligence.
  • 31
    Warestack

    Warestack

    Warestack

    Warestack is an agentic AI–powered release protection platform that installs directly into your GitHub organization and enforces custom, context-aware guardrails across every stage of your development workflow. Users write protection rules in plain English, such as requiring approvals for non-hotfix PRs or blocking Friday deployments, and Warestack automatically flags or blocks risky operations, traces events like pull requests, issues, deployments, and workflow runs in real time, and centralizes visibility in a unified dashboard. It integrates seamlessly with tools like GitHub, Slack, and Linear to deliver smart alerts and notifications, while offering one-click audit logs and reports to support SOC-2 and compliance needs. Warestack scales effortlessly across teams and repositories with scoped rule application, role-based enforcement, and a transparent open source rule engine named Watchflow that powers its policy creation.
    Starting Price: $49 per month
  • 32
    Zenity

    Zenity

    Zenity

    Enterprise copilots and low-code/no-code development platforms make it easier and faster than ever to create powerful business AI applications and bots. Generative AI makes it easier and faster for users of all technical backgrounds to spur innovation, automate mundane processes, and craft efficient business processes. Similar to the public cloud, AI and low-code platforms secure the underlying infrastructure, but not the resources or data built on top. As thousands of apps, automation, and copilots are built, prompt injection, RAG poisoning, and data leakage risks dramatically increase. Unlike traditional application development, copilots and low-code do not incorporate dedicated time for testing, analyzing, and measuring security. Unlock professional and citizen developers to safely create the things they need while meeting security and compliance standards. We’d love to chat with you about how your team can unleash copilots and low-code development.
  • 33
    WitnessAI

    WitnessAI

    WitnessAI

    WitnessAI is building the guardrails that make AI safe, productive, and usable. Our platform allows enterprises to innovate and enjoy the power of generative AI, without losing control, privacy, or security. Monitor and audit AI activity and risk with full visibility into applications and usage. Enforce consistent, acceptable use policy on data, topics, and usage. Secure your chatbots, data, and employee activity from misuse and attacks. WitnessAI is building a team of experts, engineers, and problem solvers from around the world. Our goal is to create an industry-leading AI security platform that unlocks AI’s potential while minimizing its risk. WitnessAI is a set of security microservices that can be deployed on-premise in your environment, in a cloud sandbox, or in your VPC, to ensure that your data and activity telemetry are separated from other customers. Unlike other AI governance solutions, WitnessAI provides regulatory segregation of your information.
  • 34
    GuardionAI

    GuardionAI

    GuardionAI

    GuardionAI is an Agent and MCP Security Gateway that provides unified security for AI agents and Model Context Protocol tools operating on enterprise data. It sits in the execution path to discover, redact sensitive data, enforce protection, and give teams visibility into actions that traditional SIEM, DLP, and identity layers cannot see. Every agent action is inspected, enforced, and logged at the protocol level across AI agents, LLM apps, RAG systems, chatbots, coding agents, MCP servers, internal tools, databases, operating systems, and cloud environments. GuardionAI protects against critical AI threats such as prompt injection, system override, web attacks, MCP tool poisoning, malicious code execution, NSFW content, PII and credential exposure, confidential data leakage, off-topic drift, and unauthorized access, mapped to OWASP LLM Top 10 and agentic AI threat frameworks. Its gateway provides four layers of protection.
  • 35
    Lunary

    Lunary

    Lunary

    Lunary is an AI developer platform designed to help AI teams manage, improve, and protect Large Language Model (LLM) chatbots. It offers features such as conversation and feedback tracking, analytics on costs and performance, debugging tools, and a prompt directory for versioning and team collaboration. Lunary supports integration with various LLMs and frameworks, including OpenAI and LangChain, and provides SDKs for Python and JavaScript. Guardrails to deflect malicious prompts and sensitive data leaks. Deploy in your VPC with Kubernetes or Docker. Allow your team to judge responses from your LLMs. Understand what languages your users are speaking. Experiment with prompts and LLM models. Search and filter anything in milliseconds. Receive notifications when agents are not performing as expected. Lunary's core platform is 100% open-source. Self-host or in the cloud, get started in minutes.
    Starting Price: $20 per month
  • 36
    ZeroLeaks

    ZeroLeaks

    ZeroLeaks

    ZeroLeaks is an AI prompt security platform that helps organizations identify and fix exposed system prompts, internal tools, and logic vulnerabilities that could allow prompt injection, prompt extraction, or other forms of leakage that expose internal instructions or intellectual property to unauthorized actors. It provides an interactive dashboard where users can scan system prompts manually or automate scanning via CI/CD integration to catch leaks and injection vectors before code is deployed, and it uses an AI-powered red-team-style analysis engine to assess prompt surfaces for logic flaws, extraction risks, and potential misuse with evidence, scoring, and remediation recommendations. ZeroLeaks targets enterprise-grade security for large-language-model-based products by offering vulnerability assessments that highlight prompt exposure depth, prioritized risks, proof, and access paths for issues found, and suggested fixes such as prompt restructuring, tool gating, etc.
    Starting Price: $499 per month
  • 37
    Raven

    Raven

    Raven

    Raven is a runtime application security platform designed to protect cloud-native applications by operating directly inside the application during execution, rather than relying on external defenses. It provides real-time visibility into how code actually runs, allowing it to understand execution flows, libraries, and function-level behavior in order to detect and stop malicious activity before it occurs. Unlike traditional tools such as WAF or EDR that monitor from the outside, Raven embeds itself within the application, enabling it to prevent exploits, supply chain attacks, and zero-day threats even when no known vulnerability or CVE exists. It continuously monitors runtime behavior, identifies abnormal patterns or misuse of legitimate logic, and responds immediately to block harmful execution. It also helps teams prioritize security efforts by filtering out the majority of irrelevant vulnerabilities and focusing only on those that are truly exploitable.
  • 38
    ARTEMIS by Repello
    ARTEMIS by Repello AI hunts for vulnerabilities in your AI applications by simulating attacks that malicious actors would use. ARTEMIS tests, identifies, and helps remediate security risks before they can be exploited in production environments. This is powered by world's largest AI-specific threat intelligence repositories. Key Features: 1. Simulates real-world attacks against your AI systems 2. Maps vulnerabilities across your AI infrastructure 3. Provides actionable mitigation recommendations 4. Adapts to evolving threats as your AI applications grow Built by security engineers to protect AI from attackers. Secure your AI early in development and throughout deployment.
  • 39
    Scorable

    Scorable

    Scorable

    Scorable is an AI evaluation and monitoring platform designed to help developers measure, control, and improve the behavior of applications built with large language models. It enables teams to create customized automated evaluators, sometimes referred to as AI “judges”, that assess how an AI system responds to users and whether its outputs meet defined quality standards such as accuracy, relevance, helpfulness, tone, and policy compliance. Developers can describe what they want to measure in plain language, and the platform generates a tailored evaluation stack that tests AI outputs against context-specific criteria rather than generic benchmarks. These evaluators can be embedded directly into application code, allowing AI systems such as chatbots, retrieval-augmented generation (RAG) systems, or autonomous agents to be continuously monitored in production environments.
    Starting Price: $19 per month
  • 40
    Dynamiq

    Dynamiq

    Dynamiq

    Dynamiq is a platform built for engineers and data scientists to build, deploy, test, monitor and fine-tune Large Language Models for any use case the enterprise wants to tackle. Key features: 🛠️ Workflows: Build GenAI workflows in a low-code interface to automate tasks at scale 🧠 Knowledge & RAG: Create custom RAG knowledge bases and deploy vector DBs in minutes 🤖 Agents Ops: Create custom LLM agents to solve complex task and connect them to your internal APIs 📈 Observability: Log all interactions, use large-scale LLM quality evaluations 🦺 Guardrails: Precise and reliable LLM outputs with pre-built validators, detection of sensitive content, and data leak prevention 📻 Fine-tuning: Fine-tune proprietary LLM models to make them your own
    Starting Price: $125/month
  • 41
    Lanai

    Lanai

    Lanai

    Lanai is an AI empowerment platform designed to help enterprises navigate the complexities of AI adoption by providing visibility into AI interactions, safeguarding sensitive data, and accelerating successful AI initiatives. The platform offers features such as AI visibility to discover prompt interactions across applications and teams, risk monitoring to track compliance and identify potential exposures, and progress tracking to measure adoption against strategic targets. Additionally, Lanai provides policy intelligence and guardrails to proactively safeguard sensitive data and ensure compliance, as well as in-context protection and guidance to help users route queries appropriately while maintaining document integrity. To enhance AI interactions, the platform includes smart prompt coaching for real-time guidance, personalized insights into top use cases and applications, and manager and user reports to accelerate enterprise usage and return on investment.
  • 42
    TrendAI Vision One
    TrendAI Vision One™ is an enterprise cybersecurity platform developed by Trend Micro to secure organizations in the AI era. It provides comprehensive visibility across an organization’s entire digital environment, helping eliminate security blind spots. The platform uses AI-driven analytics to prioritize risks based on business impact and urgency. It enables real-time threat detection, response, and mitigation to protect against evolving cyber threats. TrendAI Vision One™ integrates multiple security functions, including endpoint, cloud, network, and data protection, into a unified platform. It also supports secure AI adoption by safeguarding AI applications and systems from risks like data leakage and prompt injection. Overall, the platform transforms security from reactive defense into proactive risk management for modern enterprises.
  • 43
    LangProtect

    LangProtect

    LangProtect

    LangProtect is an AI-native security and governance platform that protects LLM and Generative AI applications from prompt injection, jailbreaks, sensitive data leakage, and unsafe or non-compliant outputs. Built for production GenAI, it enforces real-time runtime controls at the AI execution layer by inspecting prompts, model responses, and tool/function calls as they happen. This allows teams to block high-risk behavior before it reaches end users, triggers downstream actions, or exposes confidential data. LangProtect integrates into existing LLM stacks via an API-first approach with minimal latency and supports cloud, hybrid, and on-prem deployments for enterprise security and data residency needs. It also secures modern architectures such as RAG pipelines and agentic workflows with policy-driven enforcement, continuous visibility, and audit-ready governance.
  • 44
    Proofpoint AI Security
    Proofpoint AI Security is a unified platform designed to help enterprises govern, monitor, and protect the use of AI systems, large language models, and autonomous agents across the organization. It provides visibility into both sanctioned and unsanctioned AI usage, enabling security teams to discover shadow AI tools, observe prompts and responses, and understand how AI interacts with sensitive data in real time. It applies intent-based detection and behavioral analysis to identify anomalies, prompt injection attempts, and risky interactions, while enforcing policies directly during runtime to prevent data leakage and misuse. It reconstructs full AI transactions, from user input to agent actions and outcomes, giving organizations complete traceability and audit readiness. With controls that extend across endpoints, browsers, and AI agent connections, it enables granular access governance and ensures that AI systems only access and share appropriate information.
  • 45
    Eden AI

    Eden AI

    Eden AI

    Eden AI simplifies the use and deployment of AI technologies by providing a unique API connected to the best AI engines. Your time is precious: we take care of providing you with the AI engine best suited to your project and your data. No need to wait for weeks to change your AI engine. You can do it for free in a few seconds. We make sure to get you the cheapest provider while ensuring equal performance.
    Starting Price: $29/month/user
  • 46
    Fiddler AI

    Fiddler AI

    Fiddler AI

    Fiddler is a pioneer in Model Performance Management for responsible AI. The Fiddler platform’s unified environment provides a common language, centralized controls, and actionable insights to operationalize ML/AI with trust. Model monitoring, explainable AI, analytics, and fairness capabilities address the unique challenges of building in-house stable and secure MLOps systems at scale. Unlike observability solutions, Fiddler integrates deep XAI and analytics to help you grow into advanced capabilities over time and build a framework for responsible AI practices. Fortune 500 organizations use Fiddler across training and production models to accelerate AI time-to-value and scale, build trusted AI solutions, and increase revenue.
  • 47
    Granica

    Granica

    Granica

    The Granica AI efficiency platform reduces the cost to store and access data while preserving its privacy to unlock it for training. Granica is developer-first, petabyte-scale, and AWS/GCP-native. Granica makes AI pipelines more efficient, privacy-preserving, and more performant. Efficiency is a new layer in the AI stack. Byte-granular data reduction uses novel compression algorithms, cutting costs to store and transfer objects in Amazon S3 and Google Cloud Storage by up to 80% and API costs by up to 90%. Estimate in 30 mins in your cloud environment, on a read-only sample of your S3/GCS data. No need for budget allocation or total cost of ownership analysis. Granica deploys into your environment and VPC, respecting all of your security policies. Granica supports a wide range of data types for AI/ML/analytics, with lossy and fully lossless compression variants. Detect and protect sensitive data even before it is persisted into your cloud object store.
  • 48
    nexos.ai

    nexos.ai

    nexos.ai

    nexos.ai is an all-in-one AI platform that helps drive secure organization wide AI adoption. Teach leaders set policies & guardrails and oversee AI usage. Business teams use any AI models they need. Our platform consists of two powerful products: AI Gateway and AI Workspace. AI Gateway integrates multiple LLMs seamlessly, while AI Workspace offers a secure, web-based environment for working with AI. Founded by the team behind Europe's fastest-growing businesses, nexos.ai has already secured an $8 million investment from industry leaders and angel investors, including Index Ventures.
  • 49
    middleBrick

    middleBrick

    middleBrick

    middleBrick is a zero-friction security scanner for APIs and AI models designed for high-performance engineering teams. Unlike traditional scanners that require complex agents or credentials, middleBrick delivers a comprehensive security audit in under 60 seconds by simply analyzing an endpoint URL. Coverage includes 14 critical security categories: Full OWASP API Top 10 (BOLA/IDOR, BFLA, Mass Assignment, SSRF). AI/LLM Security: 18 adversarial probes testing for prompt injection, jailbreaks, and leakage. Web3 & DeFi: Specialized scanning for JSON-RPC nodes (Ethereum, Solana, Cosmos) and price oracle integrity. Integrated for modern workflows with a GitHub Action, CLI, and an MCP server for Claude and Cursor. middleBrick provides prioritized findings with production-ready remediation steps to help you ship secure code today. It is the "smoke alarm" for your API infrastructure, always on, only alerting you when there is a fire.
    Starting Price: $99/month
  • 50
    Reclaim Security

    Reclaim Security

    Reclaim Security

    Reclaim Security is an AI-driven cybersecurity platform designed to automatically identify and fix security exposures across an organization’s existing security tools and infrastructure. Instead of simply detecting vulnerabilities or generating alerts, it focuses on automated remediation, helping security teams resolve misconfigurations, enforce security policies, and reduce risk without requiring extensive manual intervention. It scans the organization’s security stack, including cloud environments, identity platforms, endpoint protection tools, and other defenses, to identify gaps, weak configurations, or ineffective controls that could be exploited by attackers. Once risks are detected, it analyzes them in the context of real-world attack techniques and prioritizes the issues that pose the greatest threat. It then proposes remediation actions and can automatically deploy those changes once approved, ensuring security configurations remain optimized.