SentinelAI

Auto-screenshot for record

Sentinel AI was built to address the emerging security risk of rogue AI agents operating with legitimate system permissions. Inspired by the need for faster-than-human response times in Security Operations Centers (SOCs), Sentinel acts as an autonomous, human-in-the-loop defense agent. It continuously monitors a live SOC dashboard—looking for abnormal API spikes, privilege escalations, and security alerts—and uses Gemini multimodal AI to visually analyze the interface and detect suspicious behavior without relying on fragile, fixed screen coordinates.

Operating on an "Observe, Reason, Decide, Act" loop, Sentinel alerts a human operator when a threat is detected and waits five seconds for intervention. If no response is received, it autonomously navigates the UI to disable the compromised agent. Built with React, Python, and robust fallback mechanisms to handle API outages, Sentinel proves that autonomous agents can safely and reliably defend software environments, paving the way for scalable, AI-driven threat coordination in modern systems.

Built With

gemini
gemini-live-api
github
google-cloud
html/css
javascript
node.js
npm
plyer
pyautogui
pygetwindow
pytesseract
python
react
tkinter

Submitted to

Gemini Live Agent Challenge

Created by

Built the Gemini Vision analysis pipeline - screenshot capture, threat detection, and autonomous Disable button clicking
Developed the rogue agent simulator and the continuous OCR monitoring loop
Integrated Google Cloud Generative Language API and managed authentication
Built the backend event system that feeds real-time threat data into the SOC dashboard
Implemented the System Event Log and threat level logic on the dashboard

Mohan Surendra
Asmita Ghorai
neoretro, cuando te fuiste.

Updates

Asmita Ghorai started this project — Mar 16, 2026 06:19 PM EDT

Leave feedback in the comments!

Log in or sign up for Devpost to join the conversation.