Call a Specialist Today! (02) 9388 1741

Koi AI

Koi is the software governance platform that tracks, governs, and enables software installs across all endpoints. From browser extensions and VS Code plugins to npm packages and AI agents, Koi gives organisations complete visibility and control over every piece of self-provisioned software — without deploying a single agent.

Koi is joining Palo Alto Networks, bringing its proprietary Wings™ risk intelligence engine and endpoint governance platform into the world's leading cybersecurity portfolio.

Koi AI Product Suite

Four products. Total coverage — from endpoint discovery to unified governance.

Koi AI Products

Koi Endpoint

Koi Endpoint

  • Agentless software discovery across all endpoints
  • Real-time visibility from install to removal
  • Policy enforcement without MDM dependency
  • Auto-remediation of non-compliant software
  • Covers browser extensions, IDE plugins, npm, pip, and more
View Product

Koi Wings™

Koi Wings

  • Proprietary risk intelligence engine
  • Full marketplace scan every hour
  • LLM-powered code analysis — not just descriptions
  • Sandbox execution for behavioural analysis
  • Dynamic risk scores updated with every new version
  • Publisher reputation tracking across marketplaces
View Product

Koi Gateway

Koi Gateway

  • Policy-enforced gateway between users and software marketplaces
  • Block, allow, and audit software access at network level
  • SWG integration with PAC file support
  • Compatible with existing EDR and MDM stacks
  • Granular control per team, user, or device group
View Product

Koi Platform

Koi Platform

  • Unified dashboard across all Koi products
  • Preventive policy library with pre-built rules
  • Software publishing and approved package registry
  • SIEM and SOAR integrations (Splunk, Datadog, and more)
  • API-first with Jira, ServiceNow, and Slack integrations
  • Compliance-ready reporting for SOC 2 and ISO 27001
View Product

Wings™ Risk Intelligence

Wings™ is Koi's proprietary risk engine — scanning every marketplace hourly, analysing actual code, sandboxing behaviour, and assigning dynamic risk scores that update with every new version.

How Wings™ Works

Market Scanning

  • Full scan of all marketplaces every hour
  • Publisher reputation intelligence across platforms
  • Tracks ownership changes and version history

Code Analysis

  • LLM scans actual code — not just the description
  • Detects secrets, vulnerabilities, and malware
  • Sandbox execution for full behavioural analysis

Risk Scoring

  • Dynamic risk score based on all detected indicators
  • Scores update continuously as new versions ship
  • Clear, actionable signal for policy enforcement