SecPilot

Never Lose Money to Email Attacks Again. Advanced AI-powered email security software that detects phishing, malware, ransomware, and business email compromise (BEC) attacks in real-time.

Comment

Inspiration

As a web developer turned ai and cybersecurity enthusiast, I kept seeing the same problem: Phishing emails are evolving – but most people still rely on basic spam filters. I wanted to build something smarter, something that doesn’t just block emails, but actually explains what's suspicious and why. That’s how SecPilot was born.

What it does

SecPilot is a privacy-first, AI-driven platform that analyzes suspicious emails and delivers clear, human-readable reports. Users forward an email to a secure inbox and receive an assessment that explains:

  • Whether it's phishing or fraud
  • What signals were detected (urgency, links, language)
  • What similar attacks looked like
  • Whether action is needed

It’s like having a cybersecurity analyst in your inbox – 100% automated and private.

How I built it

  • Frontend: Next.js App Router, TailwindCSS with shadcn/ui for UI components
  • Backend: Supabase (auth, database, pgvector for semantic similarity search)
  • AI Agents: Gemini via OpenRouter with fallback logic
  • Automation: n8n to orchestrate the full pipeline (IMAP → vector search → analysis → response)
  • Security by design: Emails are analyzed in-memory only, never stored

Challenges we ran into

  • Token cost optimization: Used confidence thresholds and a dual-model system to manage OpenRouter usage efficiently
  • Stateless privacy model: No email content is stored – which limited debugging and required creative handling of edge cases
  • Rate limits: AI has rate limits, so i implemented a queue in n8n to stay compliant
  • IMAP deletion logic: Avoided Gmail to gain full control, but that meant building safe, secure logic for deletion and duplicate prevention

Accomplishments that we're proud of

  • Built a fully functional MVP with zero storage and AI-powered analysis in < 4 weeks
  • Integrated AI, vector search, and automation into a seamless workflow
  • Created a trust-first product with real value for solo users, SMBs, and consultants

What we learned

  • AI is powerful – but context and structure make all the difference
  • Bolt makes it fast and fun to ship a full SaaS product with confidence

What's next for SecPilot

  • Admin dashboard with analytics, feedback loops, and severity tagging
  • Pica Integrations for AI Workflow Orchestration
  • Lingo implementation for mulit language support
  • Gmail / Outllook Add-on and browser extension (planned)

Built With

Share this project:

Updates