expert service
StackFast Cybersecurity Brain
StackFast Cybersecurity Brain assesses AI stack and workflow security through structured interview and evidence review, then delivers a written security posture spec covering authorization boundaries, data classification, audit logging, incident response, compliance mapping, and recovery posture.
Host and data posture
Where this product is meant to live.
High-trust enterprise product with private evidence and review gates.
Commercial shape
Private/BYOC product
Data posture
Tenant brain required
Approval posture
Approval required
Best demo
StackFast UI
Best daily use
Who it is for
Enterprises and regulated-industry buyers deploying AI under SOC2, HIPAA, GDPR, PCI-DSS, EU AI Act, NIST, OWASP, or CIS control expectations; PE portfolio companies needing repeatable security review; agentic consumers building security-aware pipelines.
Problem it solves
AI security posture is often unscoped before deployment, creating audit failures, compliance gaps, customer-trust risk, and incident exposure. The product produces a scoped, vendor-agnostic security spec.
Activation model
MCP tools support threat matching and assessment packets; the paid engagement uses the shared StackFast audit interview room and requires senior review before customer delivery.
Proof and source paths
- Shared audit interview room is parameterized by audit type
- Cyber threat matching routes through governed THINK decision context
- Security posture deliverable uses public security vocabulary without exposing protected StackFast internals
Repo evidence
specs/STACKFAST_CYBERSECURITY_BRAIN_MCP_SPEC_2026-05-21.mdlib/cybersecurity/mcp-tools.tslib/audit-interview/shared.tsdocs/templates/cybersecurity/StackFast_Cybersecurity_Brain_Audit_Template.md
Capabilities
cyber threat match
mcpMatch a security threat or concern to recommended solution patterns.
Agent use
Calls stackfast.cyber.threat_match and returns threat class, business impact, solution patterns, false-positive risk, implementation burden, and escalation path.
cyber evidence pack
mcpAssemble cited cybersecurity evidence for a security question.
Agent use
Calls stackfast.cyber.evidence_pack to compose a MASK-safe security evidence packet for a threat, control, compliance, or AI security question.
cyber assess
mcpRun a full security posture assessment producing a six-component review.
Agent use
Calls stackfast.cyber.assess and returns authorization, data, logging, incident, compliance, recovery, risk-register, and remediation outputs.
Connector proof
Catalog is not the same as customer-ready.
This product only becomes market-ready after a real host mounts the entitled tools, a safe call succeeds, metering records the event, and a customer-safe receipt exists. Until then, the page shows the strongest proven status without rounding up.
Catalog
Runtime registry and product manifest are present.
Entitlement
Entitlement boundary is not declared.
Callable
3 tool(s) declared with no missing V1 tools.
Metering
MCP calls are routed through the metering receipt path.
Customer validated
Pending fresh host-surface call receipt.
Runtime registry status
Primary registry
stackfast.ai/api/mcp
Status
live public mcp
Install gate
Checkout path is live only when wallet key stripe.cybersecurity_price_ids resolves all three one-time Stripe prices.
Callable tools
stackfast.cyber.threat_matchstackfast.cyber.evidence_packstackfast.cyber.assess
Missing or gated tools
No missing tools declared for the current V1 boundary.
- Cybersecurity engagements reuse the shared audit interview component family with audit_type=cybersecurity_audit.
Install and activate
Connect this product through the StackFast MCP endpoint. Discovery metadata is public; execution uses OAuth and storefront entitlement checks.
MCP URL
https://stackfast.ai/api/mcpAgent subscription
An approved agent can open checkout for checkout-ready plans, then reconnect with OAuth after payment.
Client snippets
ChatGPT
Add StackFast as a custom MCP connector, then approve OAuth when prompted.
Claude
Connect a remote MCP server using the StackFast MCP URL and a tenant-scoped token or OAuth flow.
Cursor
Register StackFast as a remote MCP server for project-scoped tool use.
Grok
Add StackFast as a custom MCP connector using the StackFast MCP URL and customer entitlement auth.
Product: StackFast Cybersecurity Brain Product API: https://stackfast.ai/api/store/products/cybersecurity-brain-mcp Pricing API: https://stackfast.ai/api/store/pricing/cybersecurity-brain-mcp Manifest API: https://stackfast.ai/api/store/manifests/cybersecurity-brain-mcp MCP URL: https://stackfast.ai/api/mcp Auth: oauth_reader_or_storefront_entitlement Checkout session API: https://stackfast.ai/api/store/checkout/session Plans: - Threat Scan: $3,500 one-time; checkout_ready=true; checkout_url=https://stackfast.ai/store/buy/cybersecurity-brain-mcp?plan=cyber_threat_scan&source=agent_activation - Security Audit: $7,500 one-time; checkout_ready=true; checkout_url=https://stackfast.ai/store/buy/cybersecurity-brain-mcp?plan=cyber_security_audit&source=agent_activation - Enterprise Security Engagement: $15,000 one-time; checkout_ready=true; checkout_url=https://stackfast.ai/store/buy/cybersecurity-brain-mcp?plan=cyber_enterprise&source=agent_activation Agent activation: - Read this product manifest and pricing API. - If a plan has checkout_ready=true, open its checkout_url or POST product_slug, plan_slug, and customer_email to the checkout session API. - After Stripe payment, the signed webhook grants storefront_entitlements for the buyer email/account. - Connect the LLM client to the MCP URL and approve OAuth so tools/list reflects the licensed reader surface. - Call only tools exposed for that entitlement; unentitled execution must fail closed.