Skip to main content

Modular accelerators that snap into ShieldCraft AI's governed control plane. Each plugin inherits our IaC guardrails, FinOps envelopes, and cross-environment promotion workflows so platform teams can ship faster without sacrificing rigor.

Threat-Classifier

Production-hardened enrichment and scoring that blends GuardDuty, SaaS telemetry, and analyst feedback into an adaptive threat profile.

Starting at$2,400/mo platform fee
ML Task: Threat regressionStatus: ProductionLatency SLA: 250ms P95Auto-tuned retraining windows
FocusThreat IntelligenceSignals fusion with explainable scoring.
GuardrailImmutable audit pathSecurity Hub + EventBridge lineage.
Outcome3.2× faster triageValidated in SOC pilot runbooks.
  • Multi-source feature engineering orchestrated via Step Functions and Lambda keeps enrichment deterministic even as telemetry volume grows.
  • Scorecards route into Security Hub and EventBridge, preserving traceability for playbooks, approvals, and analyst overrides.
  • Shadow deployments execute through SageMaker endpoints to validate new detector bundles before promotion.

Seq2Seq Answer Architect

Retrieval-augmented generation (RAG) pipeline tuned for evidence synthesis, sub-300ms P95 latency, and strict warm-path governance.

Starting at$3,800/mo + usage credits
ML Task: Seq2Seq / Generative AIArchitectural focus: Scale & latency
FocusKnowledge OpsRapid synthesis from governed corpora.
GuardrailLatency SLOsP95 ≤ 300ms across warm path.
OutcomeExec-ready answersNarratives cite source snippets.
  • Three-stage Step Functions workflow batches retrieval, prompt construction, and inference so GPU throughput scales predictably under burst traffic.
  • Vector lookups leverage pgvector with adaptive k-nearest strategy, prioritising low-latency shards for frequently accessed domains.
  • Integrated guardrails inspect prompts and completions for policy, cost, and data egress violations before streaming replies back to analysts.

Resource Forecaster

Regression-driven FinOps advisor that validates compute spend against projected demand and codifies budget guardrails before capacity spikes land.

Starting at$1,950/mo fixed
ML Task: RegressionDomain: FinOps & capacity planningRMSE monitor: Active
FocusSpend JustificationBudget envelopes by environment.
GuardrailRMSE ≤ 4.7%Auto-alerts on anomaly windows.
OutcomeSavings surfacedRecommends rightsizing + SP buys.
  • Historical telemetry, tagging metadata, and workload calendars hydrate a regression model that forecasts compute spend envelopes per environment.
  • RMSE tracking feeds CloudWatch dashboards so FinOps teams can prove model fidelity and trigger retraining when error budgets drift.
  • Recommendations flow into AWS Budgets and Cost Explorer playbooks, pairing projections with just-in-time savings plan guidance.

Access Anomaly Detector

Named-entity recognition (NER) pipeline that transforms unstructured access logs into actionable compliance artifacts and near-real-time alerts.

Starting at$2,250/mo + compliance support
ML Task: NER + anomaly detectionDomain: Data security & auditabilityGuardrail: VPC-only & KMS everywhere
FocusAccess HygieneEntity-linked compliance narratives.
GuardrailZero egressPrivate subnets + customer KMS keys.
OutcomeAudit-readyExports map directly to IAM approvals.
  • Step Functions orchestrate log ingestion, entity extraction, and anomaly scoring so sensitive identities remain inside VPC-scoped subnets.
  • KMS-encrypted feature stores and Secrets Manager rotation keep entity embeddings locked down while preserving audit trails.
  • Compliance exports map detections to IAM approvals, raising EventBridge signals when access deviates from policy baselines.
Scale & latency contract

Retrieval, prompt shaping, and inference run as discrete stages so ShieldCraft can flex concurrency without breaching cost ceilings. Step Functions state machines enforce timeouts per branch, while CloudWatch SLO alarms trigger warm-pool scaling or fall-back heuristics when latency drifts.

Budget envelope established
P50 ≤ 150ms and P95 ≤ 320ms enforced via Step Functions service integrations, with per-branch alarms feeding CloudWatch SLO dashboards.
Orchestrated resiliency
Concurrency windows and retry policies adapt by environment, ensuring dev stays cost-lean while prod absorbs burst workloads without throttling.
High-throughput readiness
Warm pool management automates GPU endpoint rotation, and read replicas serve vector lookups in-region to avoid cross-AZ jitter.
Unstructured data management

Knowledge bases hydrate from governed S3 zones into pgvector with schema tags, retention policies, and lineage hooks. Chunking profiles mirror ingestion contracts so updates remain deterministic, and sensitive payloads route through DLP inspectors before ever reaching inference.

Guardrails span the full path: prompts are scrubbed for PII, completions are redacted for policy violations, and every decision is logged with environment-specific tracing IDs.