
AI Security
Lasso Security LLM Guardian
AI security covering agent discovery, posture, red teaming, and intent-based runtime enforcement.
Lasso Security LLM Guardian Overview
What it does
Lasso Security LLM Guardian, now part of the broader Lasso Platform, is an enterprise AI security platform spanning discovery, posture management, automated red teaming, and runtime enforcement for LLM-powered applications and autonomous agents. Its distinguishing addition is Intent Security: a behavioral baseline framework that evaluates whether agent actions align with user intent and historical behavior, rather than relying on stateless pattern matching alone.
How it works
The platform connects to cloud AI builders, code repositories, and runtime gateways to inventory every agent via an AI Bill of Materials (AI-BOM), run posture analysis and 3,000+ attack-type red teaming simulations, and enforce inline policies at the proxy, API, or AI gateway layer in under 50 milliseconds. Intent Security monitors the full interaction execution path, validates goal consistency and scope adherence, and blocks or alerts on behavioral deviations across multi-agent chains.
Credentials and traction
Lasso Security is SOC 2 Type 2 compliant for its platform operations. It was named a Gartner Cool Vendor for AI Security in 2024 and designated a Representative Vendor in Gartner's Innovation Guide for GenAI TRiSM, and it won a 2026 Global InfoSec Award. Named customers include the US Department of Homeland Security, eToro, and Kaltura.
Key Capabilities
mapped to solution categoriesDetects and blocks adversarial inputs designed to override system prompts, extract training data, or redirect model behavior. Detection approaches include pattern matching, input semantic analysis, and secondary model classification.
Intercepts prompts and completions to prevent sensitive data (PII, credentials, internal IP), from being transmitted to external LLM services or returned in model responses.
Evaluates model outputs against content policy, data classification rules, and format expectations before delivery to end users, blocking responses containing sensitive data or policy violations.
Enforces IAM-style policies on LLM API access, controlling which users and applications can invoke which models and data sources, with audit logging.
Records prompts, completions, and metadata for all AI interactions with tamper-resistant storage, supporting compliance, forensics, and policy investigation.
Continuously stress-tests the product's own guardrails and filters against jailbreaks, prompt-injection payloads, and data-extraction attempts, then re-tightens policies after model or prompt changes. A self-validation loop within the runtime protection layer, distinct from the standalone AI Red Teaming discipline that tests AI systems end to end.
Automatically discovers AI models, LLM API connections, ML pipelines, and AI-enabled SaaS applications in use across the organization, including those deployed without IT authorization.
Maps data lineage and provenance across AI training and inference pipelines, tracing how PII, PHI, and IP move into models and external services.
Scores deployed AI models by risk level based on data sensitivity processed, deployment scope, capability classification, and applicable regulatory requirements.
Detects sensitive or regulated data in AI training, fine-tuning, or third-party LLM flows without appropriate controls, such as unencrypted PII in inputs or PHI sent to external APIs.
Discovers AI model and inference endpoints and flags public exposure, weak authentication, default credentials, or excessive permissions as posture misconfigurations.
Discovers AI assets, including shadow models, agents, and inference endpoints, and maps the reachable attack surface to scope and target red-team campaigns. Offensive reconnaissance, distinct from posture inventory.
Re-runs red-team campaigns continuously and at release gates in the CI/CD pipeline as models, prompts, and configurations change, catching new exploit paths before and after deployment.
Tests LLMs and AI applications against a library of direct and indirect prompt-injection and jailbreak techniques, reporting which payloads bypass system instructions and safety controls.
Attacks AI agents through their tools, memory, and connected services using multi-step techniques such as tool misuse, goal hijacking, and indirect injection, surfacing exploit paths unique to autonomous agents.
Autonomously plans and executes multi-step adversarial campaigns against AI systems, emulating real attacker workflows across reconnaissance, exploitation, and escalation rather than running a fixed checklist of tests.
Reports validated AI vulnerabilities with reproduction evidence, attacker context, and remediation guidance, mapped to the OWASP LLM Top 10, MITRE ATLAS, EU AI Act, and NIST AI RMF for auditable AI risk reporting.
Tests AI agents and their tool chains for context-poisoning, tool-misuse and indirect prompt-injection vulnerabilities.
Compliance
certificationsIntegrations
compatible toolsImplementation & support
Info last updated on May 27, 2026
Vendors
Is this your product?
Claim your profile to connect with the teams looking for your solutions.