The oracle of Delphi β Pythia sees what others can't: the shadow AI already running in your environment.
AI and ML tools spread faster than any inventory can track β Cursor, Claude Code, Ollama, Jupyter, vector databases β and each one can ship sensitive data to third-party APIs. Vulnerability scanners weren't built to see βAI risk,β so shadow AI accumulates invisibly until an auditor, or an incident, finds it first.
Pythia discovers shadow AI by content, classifies it by role, and governs where its data flows. It sweeps five evidence sources, classifies each find β Model Serving, Vector/RAG, GPU/Training, MLOps, LLM client, AI Dev Tool β flags exposed endpoints (often unauthenticated), correlates KEV exploitability, and separates sanctioned from shadow data egress via an editable allowlist.
Pythia runs against the local navi.db built from your Tenable data: the vulns AI plugin family and output, plus the software and cpes inventories, with a browser fetch of the MITRE ATLAS catalog for technique mapping. All writes are proposed, human-approved, and logged.
Illustrative results from a demo lab β not a guarantee. Egress findings are capability plus configured destinations, not proven exfiltration; blind or uncredentialed hosts are called out, not hidden.
Pythia feeds Fenrir β an exposed, unauthenticated AI endpoint is an attack-path entry β and Anubis, which turns per-role ACR suggestions into calibrated criticality. It shares the KEV signal with Laelaps.
AI governance and risk teams who need a defensible inventory; security architects deciding what to sanction; CISOs answering βhow much AI do we run, and where does its data go?β
Ask Pythia what AI is running in your estate β the oracle already knows.