Skip to content

Exciting News! Palo Alto Networks Has Announced Intent to Acquire Protect AI

Learn more arrow-right-outline
Request a demo
arrow-right

Exciting News! Palo Alto Networks Has Announced Intent to Acquire Protect AI

Learn more arrow-right-outline
Request a demo
arrow-right
ModelScan

Protect Models From Attacks

ModelScan is the industry's first Machine Learning (ML) Model scanner to support multiple formats. It scans to determine if they contain unsafe code, enabling you to deploy safer AI. It is Open Source and free to use.
Learn more arrow-right
PAI-ModelScan-white-120623

The Most Comprehensive
Open Source Model Scanner

ML models are shared over the internet, between teams, and are used to make critical decisions. Despite this, models are not scanned with the rigor of a PDF file in your inbox. ModelScan is an open source project that scans models to determine if they contain unsafe code. It is the first model scanning tool to support multiple model formats, including H5, Pickle, and SavedModel formats. This protects you when using any format tool. 

Formats Supported:

pytorch logo
Tensorflow logo
Keras logo
Scikit Learn logo
DMLC XGBoost logo

Protection Against Model Serialization Attacks

Models often need to move from one machine to another before deployment. The process of saving a model to its destination is called serialization. A Model Serialization Attack is where malicious code is injected to the contents of a model during that process. ModelScan helps protect you from various types of Model Serialization Attacks.

Protect AI-Icons 2025-Person

Credential Theft

Cloud credentials for writing and reading data to other systems in your environment are at risk of being compromised. 

Protect AI-Icons 2025-Computer

Data Theft

The request during the serialization process that is sent to the model is exposed to theft of the data used to build the model. 

Protect AI-Icons 2025-Bug-1

Data Poisoning

The data sent after the model performs it's task can be poisoned, opening you up to security risks. 

Protect AI-Icons 2025-Poison-1

Model Poisoning

If an attack takes place, the results of the model itself can be poisoned, which has a downstream impact on the AI application it is powering.

Get Started with ModelScan

Check out our GitHub page to get started
Learn more