Enterprise
Contact for pricingThe $499 pack gives your team the data. Enterprise gets that data into your tools: the risk-ranked AI registry rendered into the native formats your firewall, SIEM, NDR, endpoint, identity, and code-scanning tools ingest, set up with you and kept current. Built for in-house security and GRC teams, no platform to rip and replace.
A per-tenant auto-updating block list your firewall polls: Palo Alto EDL, Fortinet connector, Cisco Umbrella, Zscaler, Cloudflare Gateway, pfBlocker. Zero-touch weekly refresh, no manual re-import.
Prebuilt, ready-to-drop rules: Sigma (vendor-neutral), Splunk SPL, Microsoft Sentinel KQL, Elastic. Alert when someone reaches an unsanctioned AI tool, plus DLP dictionaries for your data-loss tools.
Suricata / Zeek signatures matching AI domains in TLS SNI, plus local-LLM detection (Ollama, LM Studio) by port and process - the self-hosted AI running quietly on your LAN.
Gitleaks / Semgrep rules for committed AI API keys, AI-SDK dependency lists for your SCA, and AI tool config-file patterns - find AI use, and AI secrets, in your repos.
Installed-app bundle IDs for Jamf / Intune / Kandji and browser-extension IDs for Intune / GPO blocklists - find and block shadow AI on managed devices.
AI app client IDs and names to query Okta, Entra, and Google Workspace: which AI apps did your employees authorize against company data, and what scopes did they grant.
The indicators as STIX 2.1 over TAXII and a MISP feed - drops straight into your threat-intel platform in the format your SOC already speaks.
Per-tool trust-center, SOC 2 / ISO status, subprocessors, and DPA links, mapped for your risk register - the evidence your auditors ask for.
A full API and webhook so your SOAR and automation pull the latest registry and update policy on their own. The feed integrates; you don't babysit it.
Tell us your stack (firewall, SIEM, endpoint, IdP) and we'll set up the feeds and rule packs that fit it. Re-verified and pushed weekly. Contact for pricing.
Talk to us