161 AI security tools

Agent-to-Agent protocol standards.

Open specification for securing AI-driven actions at runtime. Defines components, behaviours, and conformance requirements for systems that intercept, authorise, and audit autonomous agent actions before execution.

AI-native security observability for autonomous agents — real-time threat detection and response.

Red teaming platform for LLMs with automated benchmarking.

Workload Identity and Access Management.

Open-source AI-native data plane for securing, connecting, and observing agent-to-agent (A2A) and agent-to-tool (MCP) communication. Linux Foundation project.

First open-source agentic security scanner.

Curated guide to AI agent security with OWASP and NIST AI RMF mapping.

Open-source centralised registry for AI agents, MCP servers, and skills. Build, publish, discover, and govern AI artifacts with CLI and web UI. Pairs with Agent Gateway. By Solo.io.

Practical AI governance content, frameworks, and the AI Governance Controls MegaMap.

Public database cataloguing real-world AI incidents and failures.

Open knowledge base of 70+ defensive countermeasures mapped to MITRE ATLAS, MAESTRO, and OWASP.

The world's first AI agent security, safety, and reliability certification standard. Integrates OWASP, MITRE ATLAS, NIST AI RMF, EU AI Act, and CSA AICM crosswalks. Audited by Schellman. Quarterly updates.

AI Vulnerability Scoring System for standardised AI risk rating.

AI Security Posture Management — shadow AI visibility and SaaS AI configuration monitoring.

Security context and research repository for AI vulnerabilities.

Open-source LLM tracing, evaluation, and hallucination detection.

NHI security platform with Agent Control Plane (ACP) — discover, secure, and deploy AI agents with short-lived credentials and just-in-time access.

AWS framework for scoping security requirements of autonomous AI systems.

AI-powered cyber risk intelligence.

Containerized red teaming toolkit for AI security testing.

Agentic Responsible AI Blueprint platform. Uses AI agents to automate regulatory monitoring, gap diagnosis, compliance documentation, and role-specific governance workflows.

Web vulnerability scanner — the standard for testing the web layer of AI applications.

AI agent access control at the gateway level — enforces fine-grained authorization on tool calls from Claude Code, OpenAI Codex, Gemini CLI, and MCP servers without code changes.

Hardened container images with zero known CVEs — supply chain security for AI pipelines.

Open-source scanner for Agent-to-Agent protocol security vulnerabilities.

Enterprise AI security platform — AI BOM, MCP governance, algorithmic red teaming, agentic guardrails, and runtime protection.

Open-source scanner for AI agent skills and tool-use security.

AI agent runtime security platform — deploy, harden, and monitor OpenClaw, NemoClaw, NanoClaw, and Claude Code agents. Runtime Shield with 90+ detection patterns. By RAD Security.

Enterprise AI governance platform — model cataloging, lineage tracking, policy enforcement, bias monitoring, and EU AI Act compliance.

Open-source EU AI Act compliance evaluation framework for LLMs. Technical interpretation of regulatory requirements mapped to benchmarks. By ETH Zurich, INSAIT, and LatticeFlow AI.

Open-source AI code assistant for VS Code and JetBrains.

AI Agents for Trust Center automation.

Industry coalition producing open-source AI security frameworks — Risk Map, Agentic Principles, AI Incident Response, Model Signing, and CodeGuard.

AI governance platform — responsible AI compliance, policy enforcement, and EU AI Act readiness.

Cloud Security Alliance's structured controls for securing AI systems.

Comprehensive red teaming guide for agentic AI systems covering 12 threat categories with actionable test procedures, example prompts, and deliverables. CSA and OWASP AI Exchange joint publication.

AI-native code editor.

Control plane for agentic identities — discover, govern, and control AI agents.

SBOM standard extended for AI/ML Bill of Materials.

Framework for assessing organisational AI security maturity.

Open-source LLM evaluation and testing — continuous validation, bias detection, and regression testing.

Chinese LLM. Strong at coding but presents privacy risks.

Compliance automation via AI agent.

AI security-focused newsletter covering emerging threats, governance, and technical security.

Trust centre with Compliance as Code.

Sandboxed code execution for AI agents.

Hardened runtime isolation for AI workloads — per-container micro-VMs preventing lateral movement.

Comprehensive AI security platform with red teaming, guardrails, and compliance monitoring for LLMs and AI agents. Gartner Cool Vendor in AI Security.

End-to-end MCP security solution: scan MCP servers for vulnerabilities, manage approved registries, and enforce runtime guardrails via a security gateway.

Non-Human Identity Management.

World-leading standard (TS 104 223) for securing AI systems.

Legal framework guide for navigating European AI regulations.

Network-layer AI security gateway.

Protocol-aware data security proxy — enforces least privilege at wire-protocol level across 15+ protocols including MCP. Used by Notion, Ramp, Cursor, and Gusto.

Open-source security scanning and monitoring hub for MCP server connections.

The world's most popular AI red teaming game. Learn prompt injection by doing it.

Leading open-source LLM vulnerability scanner.

AI agent security platform — behavioural observability, posture context, and governance for enterprise agentic AI. Winner of RSAC 2026 Innovation Sandbox 'Most Innovative Startup'.

Open-source LLM testing for vulnerabilities, bias, and hallucination.

Real-time secrets detection.

AI coding assistant. Requires governance policy.

Open-source phishing toolkit. Relevant for testing AI-generated phishing campaigns.

Open-source Python framework with the largest community-driven validator hub for LLM input/output guards.

Automated red teaming and robust refusal evaluation framework.

Data protection platform that detects and governs Shadow AI usage.

Advanced AI red teaming platform for LLM vulnerabilities.

Enterprise AI security platform — discovery, supply chain, runtime defense, and attack simulation.

The ML community hub. Key attack surface.

Canary tokens designed specifically for AI model data leakage detection.

Open-source AI risk governance toolkit unifying IBM AI Risk Atlas, NIST AI RMF, OWASP Top 10, MIT AI Risk Repository, and more into a knowledge graph with actionable workflows.

IEEE's AI ethics certification programme — product certification mark and professional certification for accountability, transparency, privacy, and algorithmic bias. City of Vienna was first to earn the mark.

Practitioner-driven AI security podcast featuring OWASP, Pydantic, Pillar Security, and more.

The global standard for AI Management Systems.

Foremost AI security thought leader — author of 16 books, co-creator of MAESTRO, and researcher behind Agent Name Service (ANS).

World's first need-to-know access control for LLMs. Prevents AI oversharing by enforcing role-based knowledge boundaries at inference time.

Agentic Endpoint Security — discover, assess, and govern all non-binary software including AI agents, MCP servers, extensions, and packages.

LLM orchestration framework for building AI agents and chains.

Open-source LLM observability — traces, evals, prompt management.

GenAI security platform — shadow AI discovery, real-time guardrails, and data leakage prevention.

AI governance and technical validation platform bridging governance frameworks with deep technical assessments. Swiss deep-tech, creators of COMPL-AI. CB Insights AI100.

Agentic TPRM and Risk Engineering platform — forensic AI assessment of vendor artifacts, blast radius monitoring, and open-source recon. Turns TPRM teams into Risk Engineers.

Essential article on Prompt Injection + Tool Use + Permissions.

Open-source foundation models.

Host-level firewall for LLM agents to prevent malicious tool use.

Data framework connecting LLMs to external sources.

Security scanner for LLM inputs and outputs.

AI-powered RFP software.

AI-powered threat modelling tool built for agentic AI systems using CSA's MAESTRO framework.

Runtime guardrails for MCP connections.

Open-source framework for offensive AI testing and jailbreaking.

AI agent trust and certification platform — assess, benchmark, and continuously monitor AI agents. IEEE CertifAIEd compliance passport for enterprise buyers and regulators.

Continuous AI DAST — finds runtime-only AI vulnerabilities.

Agent governance platform — hosted MCP gateway with access control, audit logging, and guardrails. Official Cursor partner. SOC 2 Type II certified.

European foundation models and agents.

End-to-end TPRM for vendor lifecycle.

Adversarial Threat Landscape for AI Systems.

Toolkit for adding programmable guardrails to LLM-based systems.

Framework for assessing AI risk maturity based on NIST standards.

End-to-end AI application security platform.

Open-source framework for building, profiling, evaluating, and optimising multi-agent AI systems. Includes safety/security engine for agent red teaming.

Non-Human Identity (NHI) management platform with Agentic Access Management — discovery, posture, lifecycle governance, and AI-SPM for non-human identities.

Run LLMs locally.

OpenTelemetry-native LLM observability.

Runtime AI security platform — Agent Protector, AI Gatekeeper, MCP Gateway, and 3D Runtime Defense for live cloud and AI workloads. Featured in all four Gartner 2025 AI security guides.

Agent security and authorisation platform — visibility and controls to secure AI coding agents. Scopes permissions, monitors agent behaviour, enforces least-privilege. Used by Verizon, Duolingo, Wayfair, Webflow.

The comprehensive open-source guide to AI security.

OWASP Solutions Landscape directory for AI security vendors.

Practical guide for secure MCP server development covering architecture, tool design, data validation, prompt injection controls, auth, deployment, and governance. Published Feb 2026.

Evaluation criteria for assessing AI red teaming vendors and tools across simple and advanced GenAI systems. Green/red flags, discovery questions, and scoring checklist. Published Jan 2026.

Developer-first AI security APIs: Sanitize, Redact, Auth.

Security questionnaires with task automations.

AI evaluation and guardrails platform — hallucination detection, safety testing, and LLM-as-a-Judge.

Authorization-as-a-service for human, machine, and agentic identities. agent.security is the dedicated AI agent security platform.

Conversational web search using multiple LLMs.

Knowledge graph of real-world AI attack chains for evidence-based threat modelling.

Security AI Language — a DSL for writing and sharing AI security rules as code.

Policy-Based Access Management (PBAM) platform with dedicated agentic AI authorization — AI agents, RAG security, MCP control, and data access governance.

Global Risk Exchange with NLP.

Open-source interactive prompt resilience testing tool.

AI-native third-party risk management platform that identifies, assesses, and monitors AI risk across vendor ecosystems. Maps 26 risk vectors to OWASP LLM Top 10, NIST AI RMF, and MITRE ATLAS.

CLI tool for testing, red teaming, and evaluating LLM prompts.

Free collaborative database of adversarial prompts — Indicators of Prompt Compromise (IoPC).

Open trust and safety tools for evaluating generative AI.

Turns Claude Code into a general-purpose offensive/defensive security agent using CLAUDE.md rules, sub-agents, and skill orchestration for adversarial thinking and security operations.

RFP software leader with AI-driven response.

Continuous adaptive authorisation platform for humans and AI agents. Policy-driven runtime access control with MCP security, intent-aware enforcement, and AWS authorization control plane.

Cybersecurity ratings integrating with Whistic.

AI model risk report cards by Noma Security — A-F grades across six pillars, powered by Haize Labs red teaming.

Enterprise MCP security platform — gateway, threat detection, observability, and fine-grained permissions for 18,000+ MCP servers. $11M seed from Khosla/Felicis. MCP creator David Soria Parra is advisor.

AI-driven cyber risk quantification.

Trust Center + AI Questionnaire Assistance.

Data labeling and model evaluation services.

70+ integrations for continuous security compliance monitoring.

100x faster security reviews powered by AI Agents.

Supply Chain Detection and Response.

Fully autonomous AI pentester — proof-by-exploitation methodology with 96% success rate on XBOW Benchmark.

Unified Identity Protection platform with MFA.

Education resource covering Data & AI security research and reports.

Google Zanzibar-inspired fine-grained authorization database and commercial cloud platform. Used by OpenAI.

Secure Production Identity Framework.

Compliance automation platform.

Enterprise MCP platform — deploy, secure, and govern MCP servers with container isolation, OIDC/OAuth SSO, and Cedar policy-based authorization.

Self-hosted AI coding assistant.

AI code assistant with enterprise focus — private models.

Infrastructure access platform.

Non-human identity security — discover, prioritise, and remediate machine identity risks.

AI security platform — red teaming (Detect), runtime firewall (Defend), and MCP defense.

Automate Security, Privacy, and AI Risk Assessments.

Security questionnaire automation & attack surface management.

Security compliance automation for SOC2, ISO 27001.

LLM security testing — automated vulnerability scanning and continuous monitoring for AI applications.

Modernize TPRM with automated assessments.

Enterprise AI safety platform providing visibility and policy enforcement.

Cloud security platform with comprehensive AI Security Posture Management.

Open-source SDLC Infrastructure Threat Framework — supply chain attack analysis with 70+ techniques.

Breach and Attack Simulation — maps attack paths across hybrid infrastructure.

Dev-first API platform for lowest-latency GenAI guardrails.

Governance and security for Low-Code/No-Code AI agents and copilots.

Reference implementation of zero-trust architecture for AI agents.

Agentic procurement orchestration platform.