Shadow Warden sits in front of every AI tool your clients use. It strips PII, blocks jailbreaks, and generates a GDPR-compliant audit trail — in under 40 milliseconds. Built for Managed Service Providers.
NFR license available — full features, unlimited internal tenants, no time limit.
The risks your clients don't see
Technicians paste SSNs, API keys, and network configs into ChatGPT. No audit trail. No control.
GDPR fines up to 4% of global turnover
Adversaries manipulate AI tools to bypass safety controls and extract sensitive client data.
OWASP LLM01 — Prompt Injection
Enterprise clients now ask: "How do you control AI data handling?" MSPs without an answer lose deals.
EU AI Act enforcement started 2026
LLM outputs contain XSS, SQL injection, and shell commands — silently inserted into your client's codebase.
OWASP LLM02 — Insecure Output
Shadow Warden sits between your team and every AI API. Under 40ms. Zero impact on user experience.
Employee / App │ ▼ ┌──────────────────────────────────────────────────────┐ │ SHADOW WARDEN AI <40ms │ │ │ │ ① Decode obfuscation base64 / hex / ROT13 / homoglyphs │ │ ② Strip PII & secrets SSN · IBAN · API keys · emails · crypto │ │ ③ Block jailbreaks ML + 300+ rules (OWASP LLM01) │ │ ④ Scan AI output XSS · SQLi · shell cmds (LLM02) │ │ ⑤ Log metadata GDPR-safe · no raw content · ever │ └──────────────────────────────────────────────────────┘ │ │ ▼ ▼ AI Model API Audit Log (clean input) (per tenant, GDPR Art. 30)
The only control layer purpose-built for AI-specific threats.
| Category | Shadow Warden Control |
|---|---|
| LLM01 — Prompt Injection | MiniLM ML semantic detector + 300+ regex rules + obfuscation decoding |
| LLM02 — Insecure Output | Output scanner: XSS, HTML injection, Markdown injection, shell commands |
| LLM06 — Sensitive Info | 17 PII/secret patterns — GDPR-compliant redaction before transmission |
| LLM08 — Excessive Agency | SQL injection, SSRF, path traversal, shell command detection |
| All 10 categories | Continuous self-improvement via Evolution Engine — new attack patterns blocked across all clients within hours |
One deployment. Every client in an isolated sandbox. Add a new client in minutes via API.
40ms
End-to-end filter latency
17+
PII & secret patterns
$4.45M
Avg. AI breach cost (IBM 2024)
GDPR
Art. 30 RoPA out of the box
Docker Compose. No external dependencies. No data leaves your environment.
# Clone and start git clone https://github.com/zborrman/Shadow-Warden-AI cd Shadow-Warden-AI && cp .env.example .env docker-compose up -d warden # Verify — your first intercept curl -X POST http://localhost:8001/filter \ -H "Content-Type: application/json" \ -d '{"content": "SSN: 078-05-1120, key: sk-ant-api03-demo", "tenant_id": "test"}'
Start with an NFR license — prove it to yourself first, then offer it to clients.
NFR License
Free
Internal MSP use
MSP Starter
Contact us
Up to 10 client tenants
MSP Pro
Contact us
Unlimited tenants
Enterprise
Custom
Large MSPs & VARs
No slides. No decks. Live demo — we strip an SSN and block a jailbreak in front of you. Worst case: you walk away with a working AI security layer for your own team.
Book a Demo — vz@shadow-warden-ai.com15 minutes on Zoom · NFR license on the same call if you qualify