Why do agent-based systems need special security?

Agents can trigger real-world actions like API calls, database updates, or purchases. One prompt injection can lead to unintended execution or data leaks.

How does Agent Firewall protect against prompt injection?

It filters prompts at the agent layer — analyzing session context and blocking unsafe, manipulative, or multi-turn attack inputs in real time.

What’s the difference between MCP Policy and Validation?

MCP Policy controls who can do what (RBAC), while MCP Validation ensures every tool call is safe and properly structured before execution.

Can NeuralTrust work with LangChain, CrewAI, or custom agents?

Yes. Our agent security stack is orchestration-agnostic, with plugin support and flexible APIs for LangChain, CrewAI, AutoGen, and internal frameworks.

Agent runtime security

Secure AI agents at runtimeSecure AI agents at runtime

TrustGuard inspects every interaction and stops attacks at the moment of execution — on every surface where your agents run: gateways, SDKs, browsers, and platforms.

Get a demo

View the docs

TrustGuard policies dashboard showing active policies, gateway-wide protections and recent violations

Trusted by the world’s leading companies

“AI agents don’t just respond, they execute. Prompt injection, poisoned tool results, and rogue agent calls arrive as plain language. TrustGuard enforces before they reach your system.”

Policies

One policy model. Every AI threat class.One policy model. Every AI threat class.

Set rules on inputs and outputs, pick your detection types, and TrustGuard enforces the decision inline — on every interaction.

Policy flow diagram: collectors (agent gateways, SDKs, endpoints, agent platforms) feed TrustGuard, which enforces inline across injections, sensitive data, unsafe actions and behavioral attacks, producing allow, block, transform and alert decisions

How it works

From traffic to enforced decision, on every surfaceFrom traffic to enforced decision, on every surface

Collect

Collectors ingest agent traffic from gateways, SDKs, browsers, sidecars & log streams.

Detect

Protocol-typed policies run detection rules on every request and response.

Enforce

Allow, block or transform in-flight — or alert only, depending on fidelity.

Observe

Findings surface where you already look, linked back to the full trace.

Collect

Collectors ingest agent traffic from gateways, SDKs, browsers, sidecars & log streams.

Detect

Protocol-typed policies run detection rules on every request and response.

Enforce

Allow, block or transform in-flight — or alert only, depending on fidelity.

Observe

Findings surface where you already look, linked back to the full trace.

Detection depth

Most security sees one request. TrustGuard sees the conversation.Most security sees one request. TrustGuard sees the conversation.

Stateful

TrustGuard tracks conversation context across turns — catching multi-turn attacks where a jailbreak fails once and succeeds on the third attempt.

Contextual

Every decision factors in identity, protocol, and collector metadata. Richer context means more precise enforcement.

Behavioral

TrustGuard models interaction patterns over time. Probing, slow escalation, and gradual manipulation are flagged before the attack completes.

Detection depth

Most security sees one request. TrustGuard sees the conversation.Most security sees one request. TrustGuard sees the conversation.

Attacks on AI agents unfold across multiple turns, surfaces, and sessions. TrustGuard tracks all three.

Stateful

TrustGuard tracks conversation context across turns — catching multi-turn attacks where a jailbreak fails once and succeeds on the third attempt.

Contextual

Every decision factors in identity, protocol, and collector metadata. Richer context means more precise enforcement.

Behavioral

TrustGuard models interaction patterns over time. Probing, slow escalation, and gradual manipulation are flagged before the attack completes.

Performance

Enterprise performance with security in the data pathEnterprise performance with security in the data path

Battle-tested inside the most regulated environments. Inline prompt inspection, PII redaction, and semantic caching — with low overhead for production traffic.

Latency

<100ms

Added at p95with PromptGuard and Data Masking enabled

Throughput

20k+

Requests / second / nodetested under sustained enterprise load

Detection

99%

Multilingual accuracyjailbreaks, injections, policy violations

Sovereignty

100%

Split-plane data residencysensitive data stays in your perimeter

Deployment

Deploy where compliance requires

TrustGate runs wherever your data lives. No architecture changes, no security exceptions.

SaaS

Fastest to start. Managed infra, automatic upgrades.

Up in under an hour

Shared tenancy (data isolated)

ISO27001 certified

Hybrid cloud

SaaS control plane, privately hosted data plane. Data never leaves your boundary.

Single-tenant

HIPAA & GDPR ready

Custom data residency

On-premises / air-gapped

Full isolation. For defence, government, and financial sector.

No external calls

FedRAMP & IL4 pathway

Kubernetes + Helm chart

Customers

Trusted by security leaders

Juan Manuel Sanchez-Quinza

With NeuralTrust we stress-tested our chatbot with GenAI ‘SOFia,’ validating a safe go-live that meets financial-sector security and regulatory standards.

Director of Transformation, ABANCA

Customers

Trusted by security leaders

Juan Manuel Sanchez-Quinza

With NeuralTrust we stress-tested our chatbot with GenAI ‘SOFia,’ validating a safe go-live that meets financial-sector security and regulatory standards.

Director of Transformation, ABANCA

Benchmarks