ZeroRisk Sentinel
Live Demo: zerorisk-sentinel.vercel.app
Frontend Repository: github.com/shlokkokk/zerorisk-sentinel
Backend Repository: github.com/shlokkokk/zerorisk-sentinel-backend
The Question That Started It All
In a world where 450,000 new malware variants emerge daily, where phishing attacks target the most vulnerable, where a single malicious download can devastate a life — who gets to know what is safe?
Cybersecurity has become a walled garden. The tools exist. The knowledge exists. But they are locked behind enterprise paywalls, buried in technical documentation, reserved for those who already have power. The average person — a grandmother checking email, a student downloading software, a small business owner — is left defenseless.
What if security was not a privilege? What if everyone had the power to understand the threats they face?
ZeroRisk Sentinel was born from a simple belief: knowledge is protection, and protection should be universal.
What We Built
ZeroRisk Sentinel is a hybrid cybersecurity platform that democratizes threat analysis. It is not just a scanner — it is a statement that security literacy belongs to everyone.
The platform analyzes files, URLs, and Android applications through multiple lenses: signature-based detection, behavioral analysis, permission inspection, and artificial intelligence. But the real innovation is not in the technology — it is in the accessibility.
Every analysis includes plain-language explanations. Every threat is contextualized. Every user, regardless of technical background, walks away understanding not just what was detected, but why it matters and what they should do.
Core Capabilities
| Capability | Purpose |
|---|---|
| Deep File Analysis | Detect malware, keyloggers, and extension spoofing before execution |
| URL Security Scanner | Identify phishing sites and malicious links before clicking |
| APK Inspector | Reveal invasive Android permissions that compromise privacy |
Why It Matters
Cybersecurity is not just about protecting data — it is about protecting people.
A keylogger does not just steal passwords; it steals identity, financial security, peace of mind. A phishing site does not just harvest credentials; it exploits trust, preys on urgency, damages lives. An invasive app does not just collect data; it erodes privacy, enables surveillance, concentrates power in the hands of the few.
ZeroRisk Sentinel addresses a fundamental asymmetry: attackers have sophisticated tools, while defenders — everyday people — have nothing. This project is an attempt to rebalance that equation.
The Human Impact
- For individuals: The ability to verify safety before trusting
- For vulnerable populations: Protection against targeted phishing and scams
- For digital literacy: Education through transparent, explainable analysis
- For the future: A step toward universal security consciousness
How We Built It
ZeroRisk Sentinel is built on a privacy-first hybrid architecture that prioritizes user autonomy.
Frontend: Vanilla JavaScript, Tailwind CSS, Anime.js, ECharts, jsPDF
Backend: Python Flask, YARA pattern matching, python-magic, AndroGuard, dnspython
External Intelligence: Google Safe Browsing, VirusTotal, URLHaus, Hybrid Analysis, urlscan.io, Groq AI
The architecture reflects our core philosophy: your data belongs to you. Initial analysis happens client-side in the browser. Files are only sent to the backend when enhanced scanning is requested. If backend services are unavailable, the system gracefully degrades to local heuristic analysis — because protection should not depend on connectivity.
Technical Decisions
Graceful Degradation: The system functions even when cloud services fail. This ensures that security is not a service you subscribe to, but a capability you possess.
Explainable AI: We integrated Groq's Llama 3.3 model not to replace human judgment, but to translate technical findings into actionable understanding. A threat score means little; knowing why a file is dangerous means everything.
Transparent Analysis: Every scan shows real-time console output. Nothing is hidden. Users see exactly what is being checked and why.
Impact and Vision
Immediate Impact
ZeroRisk Sentinel provides immediate, practical value: the ability to analyze suspicious files, verify questionable links, and audit Android app permissions before installation. It turns security from a reactive panic into a proactive habit.
Future Evolution
- Browser Extension: Instant analysis of every link, every download, every prompt
- Community YARA Rules: Crowdsourced threat signatures from security researchers worldwide
- Educational Modules: Teaching security literacy through interactive analysis
- Mobile Application: On-device APK scanning without uploading sensitive files
- Multilingual Support: Breaking down language barriers to global security
The Bigger Picture
We envision a world where security literacy is as fundamental as reading and writing. Where people do not fear technology because they understand it. Where the power to verify, to question, to protect oneself is not sold as a product but recognized as a right.
ZeroRisk Sentinel is one step toward that world.
Repositories
- Frontend: github.com/shlokkokk/zerorisk-sentinel
- Backend: github.com/shlokkokk/zerorisk-sentinel-backend
"Security is not a product — it is a process. And processes should belong to everyone."
Build what will remain.
Built With
- ai
- analysis
- androguard
- anime.js
- api
- css
- dnspython
- echarts
- flask
- groq
- html5
- hybrid
- javascript
- jspdf
- python
- python-magic
- tailwind
- urlhaus
- urlscan.io
- virustotal
- yara
Log in or sign up for Devpost to join the conversation.