AI-Native Threat Modeling Platform

Know Every Threat.
In Your AI System.
Before Attackers Do.

Verdrix automatically maps AI components, infers attack paths, identifies threats mapped to NIST AI RMF and ISO 42001, and generates audit-ready reports in minutes.

Built for AI security teams in
🏠 Financial Services
🏥 Healthcare AI
🏢 Enterprise SaaS
⚙️ Manufacturing
💻 Legal Tech
comprehensive
AI-specific threats catalogued
🏗️
Broad AI component library
extensive
Security controls with NIST mapping
<5 min
From code to threat report
How It Works

Three ways to model your AI architecture

Whether you have code, a diagram, or just a description — Verdrix extracts your architecture and gets to work.

1
🔎 Describe, Upload, or Scan

Type a description of your AI system, upload a draw.io or Visio diagram, or connect your CI/CD pipeline. Verdrix extracts all components automatically.

2
⚡ Instant Threat Analysis

Verdrix maps detected components to comprehensive AI-specific threats using MITRE ATLAS, OWASP LLM Top 10, and NIST AI RMF. No manual input needed.

3
📋 Implement Controls

Apply extensive mapped security controls, calculate residual risk, and generate audit-ready PDF/Excel reports with ISO 42001 and NIST AI RMF compliance scores.

4
📊 Track and Improve

Monitor risk trends over time, get AI-assisted recommendations, visualise attack paths, and continuously improve your security posture.

Platform Features

Everything you need for AI security

Built for the full lifecycle of AI system security — from architecture review to compliance reporting.

🤖
Auto-Detect Architecture

Describe your system in plain text, upload a diagram, or scan your repository. Verdrix automatically extracts components with confidence scoring.

🏗️
Visual Threat Canvas

Drag-and-drop broad AI component types onto an interactive canvas. Draw connectors, set trust boundaries, and run threat analysis in real time.

🔌
Attack Path Analysis

Automatically identify the top 5 highest-risk attack chains across your architecture. Prioritise which paths to harden first.

🔑
Security Recommendations

Receive 12 prioritised, property-based recommendations tailored to your architecture — no vendor assumptions, just actionable guidance.

📊
Compliance Dashboard

Real-time compliance scores for NIST AI RMF and ISO 42001. See clause-by-clause coverage gaps and track improvement over time.

📄
PDF and Excel Export

One-click audit-ready reports. Include threat analysis, control implementation, residual risk, evidence attachments, and compliance scores.

⚙️
CI/CD Integration

Scan requirements.txt, .env, docker-compose, and Terraform files from your pipeline. Gate deployments on AI risk thresholds automatically.

👥
Team Collaboration

Role-based access, project sharing, approval workflows, and AI inventory management. Built for security teams of any size.

📌
Risk Register

Track every threat with owner assignment, mitigation decisions, evidence attachments, comments, and workflow approvals in one place.

Compliance Coverage

Built for the frameworks that matter

Demonstrate compliance with confidence. Verdrix maps your security posture to authoritative frameworks so your team can focus on remediation, not spreadsheets.

✅ NIST AI RMF
✅ ISO 42001
✅ OWASP LLM Top 10
✅ MITRE ATLAS
✅ EU AI Act Art.9
✅ GDPR Art.25 and 44
✅ ISO 27001 Annex A
✅ NIST CSF 2.0
Threat Categories Covered
Prompt Injection
Data Poisoning
Model Extraction
Supply Chain
Agentic Abuse
Privacy Risk
Denial of Service
Compliance Gap
Connector Abuse
+17 more categories
Pricing

Start free. Scale as you grow.

No credit card required for Free tier. Upgrade anytime as your team grows.

Free
Starter
For individuals and small teams exploring AI threat modeling.
$0 / month
Free forever — no credit card needed
  • 1 user LIMIT
  • 2 architectures LIMIT
  • Basic threat analysis (comprehensive threat coverage)
  • Compliance dashboard (NIST AI RMF, ISO 42001)
  • PDF and Excel export
  • 30-day data retention LIMIT
  • CI/CD pipeline integration
  • Team collaboration
  • Attack path analysis
  • Risk Register
  • Evidence attachments
  • Priority support
Most Popular
Professional
Growth
For security teams building and reviewing AI systems regularly.
$20 / month
$200/year — save 2 months
  • 1 user LIMIT
  • 20 architectures LIMIT
  • Everything in Starter
  • Team collaboration and roles
  • Attack path analysis
  • Security recommendations engine
  • Risk Register with workflow
  • Evidence attachments
  • 90-day data retention
  • CI/CD pipeline integration 20 scans/day
  • Priority email support (24h SLA)
Enterprise
Scale
For organisations with advanced security, compliance, and integration needs.
$300 / month
$3,000/year — custom pricing available
  • Unlimited users
  • Unlimited architectures
  • Everything in Professional
  • SSO/SAML integration COMING SOON
  • Custom compliance frameworks
  • Dedicated account manager
  • 365-day data retention
  • Unlimited CI/CD API calls
  • Phone and chat support (4h SLA)
  • Custom threat library
  • On-premise deployment option
  • SLA guarantee

Starter is free forever. Professional and Enterprise plans are paid subscriptions. All paid plans can be trialled for 14 days before billing begins. Questions? Contact us.

Start modeling your AI threats today

Join security teams who use Verdrix to identify and mitigate AI risks before they become incidents. Free to start, no credit card required.

Already have an account? Sign in