Cyber, AI, and Agentic Security
for the Defense Enterprise
Detect, validate, and deceive adversarial threats across AI and agentic systems. Three shipping capabilities, built by a Service-Disabled Veteran-Owned Small Business.
One Suite. Three Capabilities.
Each capability is a standalone product — together they form the defensive stack for AI and agentic systems in contested environments.
Runtime AI Firewall
Five-stage detection pipeline — sanitizer, pre-filter, ML classifier, RAG guard, and LLM judge — gates every input to your LLM in under 2ms. Cyber-deception mode turns blocks into honeypots so attackers waste hours on decoys while you collect threat intelligence.
Adversarial Testing Engine
Multi-agent red team for AI systems with 57 attack scenarios across 9 categories. React review dashboard, MCP server, polyglot tool integration (Garak, PyRIT, AI Exchange). Peer-reviewed methodology under UK AISI inspect_evals PR #1358.
Agentic Cyber Defense
A four-agent framework (Project Management, Code Generation, Cyber Analysis, Vulnerability Research) with a human-on-the-loop operator interface. Every autonomous action gated by the same safety pipeline that powers Shield. CALDERA-emulated; ATT&CK-aligned; citation-bound vulnerability research.
Every capability above is mapped to MITRE ATT&CK and ATLAS. Every autonomous action is gated by the five-stage safety pipeline. Every claim on this page is testable today via pip install oubliette-shield or pip install oubliette-dungeon.
Don't Just Block. Deceive.
Traditional AI firewalls give attackers instant feedback. Oubliette makes them think they succeeded.
The Old Way
- ✗ Block and return error message
- ✗ Attacker knows they were detected
- ✗ Iterates with new attack variants
- ✗ No intelligence gathered
- ✗ Single-request analysis only
The Oubliette Way
- ✓ Return convincing fake data
- ✓ Attacker wastes hours on decoys
- ✓ Honey tokens trigger alerts on use
- ✓ STIX 2.1 threat intelligence generated
- ✓ Multi-turn session tracking
5-Stage Detection Pipeline
Block obvious attacks in microseconds. Reserve expensive LLM calls for the 5-15% that need them.
Input Sanitizer
<1msStrips 9 types of encoding attacks, Unicode obfuscation, and invisible characters before any analysis begins.
Pre-Filter
~10ms11 pattern-matching rules block obvious prompt injections, jailbreaks, and DAN attacks instantly. 1,550x faster than LLM-only.
ML Classifier
~2msLogisticRegression + TF-IDF with 733 features. F1=0.98, AUC=0.99. Catches sophisticated attacks the pre-filter misses.
LLM Judge
12 providersOnly 5-15% of inputs reach the LLM judge. Supports OpenAI, Anthropic, Azure, Bedrock, Vertex, Ollama, and more.
Session Tracker
multi-turnAccumulates attack signals across conversation turns. Escalates sessions when thresholds are exceeded.
"Most attacks are obvious — a pattern match catches it in 10 milliseconds. Only the truly ambiguous inputs need the full LLM judge."
Compliance-Ready from Day One
Mapped to every major AI security framework. Audit-ready documentation included.
Built for Government & Enterprise
Oubliette Security is an SBA-certified Service-Disabled Veteran-Owned Small Business (SDVOSB). We specialize in AI security for defense, intelligence, and regulated industries — with air-gapped deployment options and full compliance mapping. Eligible for SDVOSB sole-source awards up to $5M and set-aside competitions.
NAICS: 541512, 541519, 518210 · SAM.gov Registered · CAGE: 19AK6
Ready to Engage?
Federal program offices, AI builders, and incident responders — three different ways to start with Oubliette Security.