Skip to content
Home AI Security Tools Knostic
KN

Knostic

NEW
Category: AI Security
License: Commercial
Visit Website →
Suphi Cankurt
Suphi Cankurt
AppSec Enthusiast
Updated March 23, 2026
6 min read
Key Takeaways
  • First platform to enforce need-to-know access controls for LLMs, preventing enterprise AI tools from oversharing sensitive data.
  • Only startup to win both the RSA 2024 Launch Pad and Black Hat 2024 Startup Spotlight competitions.
  • Detects oversharing, undersharing, and inference risks in Microsoft 365 Copilot, Glean, Gemini, and custom LLM deployments.
  • Founded by Gadi Evron (serial entrepreneur, former CISO of the Israeli National Digital Authority) and Sounil Yu (creator of the Cyber Defense Matrix, former Bank of America Chief Security Scientist).
  • $19.3M total funding including $11M raised in March 2025 and a $5M RSAC Innovation Sandbox investment in April 2025.

Knostic is the first AI security platform built to enforce need-to-know access controls for enterprise large language models, preventing AI tools like Microsoft 365 Copilot, Glean, and Google Gemini from oversharing sensitive corporate data to unauthorized users.

Founded in 2023 by cybersecurity veterans Gadi Evron (former CISO of the Israeli National Digital Authority) and Sounil Yu (creator of the Cyber Defense Matrix), Knostic addresses a problem unique to the enterprise AI era: LLM-based assistants connect to vast corporate data stores and can surface salary data, M&A details, or strategy documents to anyone who asks the right question. Unlike traditional data-level access controls, Knostic enforces policies at the AI inference layer.

Knostic has raised $19.3 million in total funding, including $11 million in March 2025. It is the only startup to win both the RSA Conference 2024 Launch Pad and the Black Hat 2024 Startup Spotlight competitions. It was also named a Top 10 Finalist in the RSAC 2025 Innovation Sandbox Contest, receiving a $5 million investment from Crosspoint Capital Partners.

Key Features at a Glance

FeatureDetails
Need-to-Know EnforcementInference-time access policies that control what each LLM response reveals based on user role and context
Oversharing DetectionPre-deployment query simulation that discovers AI data leakage paths before real users hit them
Microsoft 365 CopilotMonitors and controls Copilot access to Teams, SharePoint, OneDrive, and other M365 sources
Glean & GeminiDetects oversharing across Glean enterprise search and Google Gemini Workspace deployments
Custom LLM CoverageProtects internally built AI applications and chatbots with custom policy enforcement
Dynamic RedactionRemoves sensitive elements from AI responses while keeping the rest useful
Audit TrailsFull logging of queries, responses, and data sources for compliance and regulatory reviews
Continuous MonitoringRe-tests as data sources change, new documents are added, and permissions shift

Overview

Traditional access controls work at the data level, restricting who can open which files or folders. But enterprise LLMs operate at the knowledge level. They read across thousands of documents and synthesize answers, which means an employee might not have direct access to a confidential file but can still extract its contents by asking the AI assistant a carefully worded question. Compared to data-level security tools like DLP solutions, Knostic operates one layer higher — at what it calls the “knowledge layer.”

The knowledge layer is the space between static enterprise data and AI-generated answers. Knostic is the first platform designed to secure this layer.

The platform works in three stages: it simulates employee queries to discover oversharing paths before they become incidents, enforces need-to-know policies at inference time, and provides audit trails showing who saw what and why.

Need-to-Know Enforcement
Enforces access policies at the AI inference layer, not just at the data level. Ensures LLM responses only contain information the querying user is authorized to see based on their role and business context.
Oversharing Detection
Simulates real employee queries across enterprise AI tools to proactively discover where Copilot, Glean, or custom LLMs can leak sensitive knowledge from SharePoint, Teams, OneDrive, and other sources.
Knowledge Layer Audit
Provides complete audit trails of AI interactions, logging which data sources contributed to each response. Enables compliance teams to trace exactly what information was surfaced and to whom.

Key Features

Knostic platform dashboard showing discovered AI tools with risk scores, sanction status, and policy actions across 247 monitored AI services

AI Oversharing Detection

The core challenge: an employee asks their company’s AI assistant “What are the salary ranges for the engineering team?” or “What is our M&A pipeline?” — and gets an answer they should never have seen.

Knostic addresses this through pre-deployment simulation:

  • Query simulation — Runs realistic employee queries across enterprise AI assistants to discover oversharing before real users encounter it
  • Prompt tracing — Traces each prompt through the system to identify which data sources contribute to responses
  • Risk scoring — Ranks oversharing incidents by severity based on data sensitivity and user authorization level
  • Continuous scanning — Regularly re-tests as data sources change, new documents are added, and permissions shift

Need-to-Know Policy Enforcement

Knostic enforces policies at inference time, controlling what the LLM reveals in each response:

  • Role-based filtering — Applies policies based on the querying user’s role, department, and clearance level
  • Context-aware decisions — Goes beyond static role matching to consider the business context of each query
  • Dynamic redaction — Removes sensitive elements from AI responses while keeping the rest of the answer useful
  • Policy drift detection — Monitors for changes in data access patterns that could indicate policy violations

Knostic knowledge security overview showing risk score assessment, sync monitoring, and total items analyzed across enterprise AI deployments

Enterprise AI Tool Coverage

Knostic provides visibility and protection across major enterprise AI platforms:

  • Microsoft 365 Copilot — Monitors data access from Teams, SharePoint, OneDrive, and other M365 sources
  • Glean — Detects oversharing in Glean’s enterprise search and assistant
  • Google Gemini — Covers Gemini deployments within Google Workspace
  • Custom LLM deployments — Protects internally built AI applications and chatbots

Compliance and Auditing

Every AI interaction generates an audit record:

  • Full logging of queries, responses, and contributing data sources
  • “Who saw what, why” tracking for compliance requirements
  • Exportable audit trails for regulatory reviews
  • Integration with existing GRC and compliance workflows
Double award winner
Knostic won both the RSA Conference 2024 Launch Pad and Black Hat 2024 Startup Spotlight competitions — the only startup to sweep both in 2024. It was also a Top 10 Finalist in the RSAC 2025 Innovation Sandbox Contest.

Use Cases

Microsoft 365 Copilot rollouts — Before enabling Copilot for all employees, Knostic simulates queries to discover what sensitive data Copilot can surface and to whom.

Regulated industries — Financial services, healthcare, and government organizations need to prove their AI deployments enforce data access policies and maintain audit trails.

M&A and sensitive operations — Companies running acquisitions, restructurings, or other confidential processes need to ensure AI assistants do not leak deal details to unauthorized employees.

AI governance programs — Security teams building AI governance frameworks use Knostic to enforce need-to-know controls as a base layer.

Strengths & Limitations

Strengths:

  • Addresses a problem no traditional security tool covers: the gap between data access controls and AI-generated knowledge
  • Pre-deployment simulation finds oversharing risks before real users are affected
  • Founded by recognized cybersecurity leaders with deep enterprise experience
  • Covers multiple enterprise AI platforms (Copilot, Glean, Gemini, custom LLMs)
  • Inference-time enforcement means policies apply even when underlying data permissions are misconfigured

Limitations:

  • Young company (founded 2023) still building out its platform and customer base
  • Focused specifically on enterprise AI oversharing, not a general-purpose AI security tool
  • Requires integration with each AI platform for full coverage
  • Effectiveness depends on accurate role and policy definitions; garbage-in-garbage-out applies

Getting Started

1
Assess your AI tools — Identify which enterprise AI tools are deployed (Copilot, Glean, Gemini, custom). Map the data sources each tool can access.
2
Run oversharing simulation — Knostic simulates queries across user roles to discover where AI tools can leak sensitive data. This produces a risk assessment before any policies are enforced.
3
Define need-to-know policies — Based on simulation results, establish policies that define what information each role should and should not see through AI responses.
4
Enable enforcement — Activate inference-time enforcement to filter AI responses based on your policies. Start with high-sensitivity data categories (compensation, M&A, legal matters).
5
Monitor and audit — Use Knostic’s continuous monitoring to detect policy drift, new oversharing paths, and compliance issues as your data sources and AI tools evolve.

How Knostic Compares

Knostic focuses specifically on need-to-know access control for enterprise LLMs. Unlike Lakera Guard or LLM Guard, which focus on runtime prompt injection detection and content filtering, Knostic targets the data oversharing problem that emerges when LLMs connect to corporate knowledge bases.

Compared to LLM red teaming tools like Garak, Promptfoo, or PyRIT that test for vulnerabilities before deployment, Knostic provides continuous enforcement during production use. For custom guardrail logic in LLM applications, explore NeMo Guardrails.

For broader AI model security covering adversarial attacks and model scanning, consider HiddenLayer or Protect AI Guardian. For AI observability and monitoring, see Arthur AI or CalypsoAI.

Best for
Enterprise security teams rolling out AI assistants (especially Microsoft 365 Copilot) that need to ensure sensitive corporate data is not overshared through AI-generated responses. Particularly valuable for regulated industries and organizations handling confidential M&A or legal matters.

For a broader overview of AI security threats and tools, see the AI security tools category page.

Frequently Asked Questions

What is Knostic?
Knostic is the first AI security platform built to enforce need-to-know access controls for large language models. It prevents enterprise AI tools like Microsoft 365 Copilot, Glean, and custom LLMs from oversharing sensitive information to unauthorized users. Founded in 2023 by Gadi Evron and Sounil Yu.
What problem does Knostic solve?
Enterprise LLMs connect to corporate data sources (SharePoint, Teams, OneDrive, email) and can surface sensitive information like salary data, M&A details, or internal strategy documents to any employee who asks. Traditional access controls operate at the data level, but LLMs can infer and combine information in ways those controls never anticipated. Knostic enforces access policies at inference time.
How does Knostic detect oversharing?
Knostic simulates real employee queries across enterprise AI assistants to uncover oversharing incidents that traditional access controls miss. It traces prompts through the system to identify which data sources contribute to each response and flags when responses contain information the querying user should not see based on their role.
What awards has Knostic won?
Knostic won both the RSA Conference 2024 Launch Pad and the Black Hat 2024 Startup Spotlight competitions, making it the only startup to sweep both top cybersecurity event competitions in 2024. It was also selected as a Top 10 Finalist in the RSAC 2025 Innovation Sandbox Contest.
Does Knostic work with Microsoft 365 Copilot?
Yes. Knostic provides visibility into how Microsoft 365 Copilot accesses and surfaces corporate data from Teams, SharePoint, OneDrive, and other Microsoft 365 sources. It identifies where Copilot may overshare sensitive knowledge and enforces need-to-know policies before responses reach users.
Who founded Knostic?
Knostic was co-founded in 2023 by Gadi Evron (CEO) and Sounil Yu (CTO). Gadi is a serial entrepreneur who previously founded Cymmetria (acquired) and served as CISO for the Israeli National Digital Authority. Sounil is the creator of the Cyber Defense Matrix and the DIE Triad, previously serving as Chief Security Scientist at Bank of America and CISO at JupiterOne.
How we review tools Suggest an edit

Other AI Security Tools

Akto
Akto

AI Agent & MCP Security Platform

Adversarial Robustness Toolbox (ART)
Adversarial Robustness Toolbox (ART)

IBM's ML security library for adversarial attacks and defenses

Arthur AI
Arthur AI

AI Observability and Bias Detection

DeepTeam
DeepTeam

LLM Red Teaming Framework

FU
FuzzyAI

CyberArk's open-source LLM jailbreak fuzzer

Garak
Garak

NVIDIA's LLM Vulnerability Scanner

See all AI Security tools

Complement with SAST

Pair AI security with static analysis for broader coverage.

Bandit
Bandit

Open-Source Python Scanner

BE
Betterleaks

Gitleaks successor with secrets validation

See all SAST tools

Learn More

Vibe Coding Security AI-Generated Code Security LLM Red Teaming Prompt Injection Attacks What is AI Security?

Explore all AI Security guides and tools