Security Stack Logo
Lasso Security LLM Guardian logo

AI Security

Lasso Security LLM Guardian

AI security covering agent discovery, posture, red teaming, and intent-based runtime enforcement.

LLM SecurityAI Security Posture Management (AISPM)AI Red Teaming

Lasso Security LLM Guardian Overview

What it does

Lasso Security LLM Guardian, now part of the broader Lasso Platform, is an enterprise AI security platform spanning discovery, posture management, automated red teaming, and runtime enforcement for LLM-powered applications and autonomous agents. Its distinguishing addition is Intent Security: a behavioral baseline framework that evaluates whether agent actions align with user intent and historical behavior, rather than relying on stateless pattern matching alone.

How it works

The platform connects to cloud AI builders, code repositories, and runtime gateways to inventory every agent via an AI Bill of Materials (AI-BOM), run posture analysis and 3,000+ attack-type red teaming simulations, and enforce inline policies at the proxy, API, or AI gateway layer in under 50 milliseconds. Intent Security monitors the full interaction execution path, validates goal consistency and scope adherence, and blocks or alerts on behavioral deviations across multi-agent chains.

Credentials and traction

Lasso Security is SOC 2 Type 2 compliant for its platform operations. It was named a Gartner Cool Vendor for AI Security in 2024 and designated a Representative Vendor in Gartner's Innovation Guide for GenAI TRiSM, and it won a 2026 Global InfoSec Award. Named customers include the US Department of Homeland Security, eToro, and Kaltura.

Key Capabilities

mapped to solution categories
LLM Security

Detects and blocks adversarial inputs designed to override system prompts, extract training data, or redirect model behavior. Detection approaches include pattern matching, input semantic analysis, and secondary model classification.

Intercepts prompts and completions to prevent sensitive data (PII, credentials, internal IP), from being transmitted to external LLM services or returned in model responses.

Evaluates model outputs against content policy, data classification rules, and format expectations before delivery to end users, blocking responses containing sensitive data or policy violations.

Enforces IAM-style policies on LLM API access, controlling which users and applications can invoke which models and data sources, with audit logging.

Records prompts, completions, and metadata for all AI interactions with tamper-resistant storage, supporting compliance, forensics, and policy investigation.

Continuously stress-tests the product's own guardrails and filters against jailbreaks, prompt-injection payloads, and data-extraction attempts, then re-tightens policies after model or prompt changes. A self-validation loop within the runtime protection layer, distinct from the standalone AI Red Teaming discipline that tests AI systems end to end.

AI Security Posture Management (AISPM)

Automatically discovers AI models, LLM API connections, ML pipelines, and AI-enabled SaaS applications in use across the organization, including those deployed without IT authorization.

Maps data lineage and provenance across AI training and inference pipelines, tracing how PII, PHI, and IP move into models and external services.

Scores deployed AI models by risk level based on data sensitivity processed, deployment scope, capability classification, and applicable regulatory requirements.

Detects sensitive or regulated data in AI training, fine-tuning, or third-party LLM flows without appropriate controls, such as unencrypted PII in inputs or PHI sent to external APIs.

Discovers AI model and inference endpoints and flags public exposure, weak authentication, default credentials, or excessive permissions as posture misconfigurations.

AI Red Teaming

Discovers AI assets, including shadow models, agents, and inference endpoints, and maps the reachable attack surface to scope and target red-team campaigns. Offensive reconnaissance, distinct from posture inventory.

Re-runs red-team campaigns continuously and at release gates in the CI/CD pipeline as models, prompts, and configurations change, catching new exploit paths before and after deployment.

Tests LLMs and AI applications against a library of direct and indirect prompt-injection and jailbreak techniques, reporting which payloads bypass system instructions and safety controls.

Attacks AI agents through their tools, memory, and connected services using multi-step techniques such as tool misuse, goal hijacking, and indirect injection, surfacing exploit paths unique to autonomous agents.

Autonomously plans and executes multi-step adversarial campaigns against AI systems, emulating real attacker workflows across reconnaissance, exploitation, and escalation rather than running a fixed checklist of tests.

Reports validated AI vulnerabilities with reproduction evidence, attacker context, and remediation guidance, mapped to the OWASP LLM Top 10, MITRE ATLAS, EU AI Act, and NIST AI RMF for auditable AI risk reporting.

Tests AI agents and their tool chains for context-poisoning, tool-misuse and indirect prompt-injection vulnerabilities.

Compliance

certifications
GDPRHIPAA

Integrations

compatible tools
AnthropicAWSCloudflareGitHubGoogle GeminiGoogle Vertex AIMicrosoft AzureMicrosoft Azure AI FoundryMicrosoft Copilot StudioOktaOpenAISalesforce AgentforceSAML SSO

Implementation & support

Deployment model
CloudOn-PremisesSaaS
Pricing structure
Custom / Enterprise
Support channels
DocumentationEmail SupportKnowledge Base

Info last updated on May 27, 2026

Vendors

Is this your product?

Claim your profile to connect with the teams looking for your solutions.

Security Stack Logo

The curated research platform for enterprise cybersecurity solutions.

All product and company names, logos, and brands are property of their respective owners and are used on this website for identification purposes only. Security Stack does not endorse any vendor, product, or service listed, and makes no warranties, express or implied, as to the accuracy or completeness of this content, including any warranties of merchantability or fitness for a particular purpose.

© 2026 Security Stack. All rights reserved.