Runtime governance & threat defence

Sentinel

Sentinel is a security control plane for a running agent estate. It watches every tool call and trajectory, classifies threats in real time, shields data at the boundary, and streams governance events straight to your SIEM.

What it isMCP-native agent security control plane
WatchesTool calls, trajectories, data at the boundary
Streams toYour SIEM (CEF over TCP/TLS)
StageWorking prototype · containment on roadmap
01The outcome
Before

A compromised or misbehaving agent keeps acting until a human notices – usually from a log review, long after the damage is done.

After

Every tool call and trajectory across your agent estate is watched and threat-classified in real time and streamed to your SIEM, so misbehaviour is caught as it happens. Automated identity revocation and runtime containment are the next step on the roadmap.

Sentinel is the enterprise wedge beside the stack: it consumes the same identities and the same audit-of-record every other layer does, and turns them into live defence.

02How it works

Sentinel is organised as six bounded responsibilities over a running agent estate. Together they observe, classify, protect, and report – with containment as the declared next step.

RECON

See the estate

Discover and map the agents, tools and trajectories actually running, so there's a live picture to defend.

DETECT

Classify threats

Score tool calls and trajectories for threat patterns – prompt-injection, exfiltration attempts, protocol abuse – in real time.

SHIELD

Protect data

Shield sensitive data at the boundary, so a misbehaving agent can't quietly carry it out.

INTERCEPT

Catch protocol abuse

Intercept malformed or abusive protocol traffic before it reaches the tools an agent is calling.

SIGNAL

Stream to SIEM

Emit governance events straight to your existing SIEM as CEF over TCP/TLS – real egress, not a dashboard you have to watch.

CONTAIN

Contain – next

Isolate an incident, revoke an identity, cut access. This is coded against the stack's controls and is the next capability landing; we flag it as roadmap, not shipped.

Stated honestly Detection today is deterministic, pattern-based classification – fast and predictable. A learned classifier and full automated containment (revocation and isolation at runtime) are on the near-term roadmap. Threat monitoring, data shielding and SIEM streaming work now.
03Proof

Sentinel ships a one-command demo that boots the control plane keyless, and its SIEM egress is real – CEF over syslog/TLS, the format your security team already ingests.

Example · detect → signal
sentinel demo
agent:researcher → tool:http.fetch(internal-creds-store)
  DETECT ....... exfiltration pattern   HIGH
  SHIELD ....... payload withheld at boundary
  SIGNAL ....... CEF event → SIEM  sent

# CONTAIN (revoke + isolate) – roadmap, flagged not shipped

Threats are classified and streamed to your SIEM as they happen; containment is the next step, marked as such.

SYNTHERA is the trust layer for multi-agent systems: every agent gets a verifiable identity, scoped authority and a tamper-evident record, so software from different teams, vendors and frameworks can act on each other’s behalf without custom glue between every pair.

Talk to us about Sentinel.

Talk to us about Sentinel