Team Srapid | Built by Abhijat | Microsoft Build AI Hackathon 2025
Track: Security in the Agentic Future
As AI agents proliferate β browsing the web, processing emails, managing files, and making autonomous decisions β they become prime targets for a new class of attacks:
- Prompt Injection: Malicious instructions hidden in inputs that hijack agent behavior
- Identity Spoofing: Attackers impersonating trusted agents or users
- Privilege Escalation: Agents being tricked into accessing resources beyond their scope
- Data Exfiltration: Sensitive data leaked through manipulated agent actions
Traditional cybersecurity tools (firewalls, antivirus, WAFs) are not designed for this threat landscape. There is no standardized security framework for protecting AI agents.
AgentArmor is a three-layer biological immune system for AI agents, inspired by how the human body defends against pathogens:
| Layer | Name | Biological Analog | What It Does |
|---|---|---|---|
| Layer 1 | Prompt Injection Firewall | Skin barrier | Multi-strategy detection engine that scans ALL inputs before they reach agents |
| Layer 2 | Behavioral Immune System | Innate immunity | Builds behavioral fingerprints per agent and detects anomalies in real-time |
| Layer 3 | Collective Immunity | Adaptive immunity | Honeypot agents trap attackers + immune memory propagates defenses to all agents |
When one agent is attacked, the attack signature is captured, analyzed, and propagated to ALL agents in the network β providing instant collective immunity. Attack one, defend all.
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β React Dashboard (Vite) β
β ββββββββββββ βββββββββββββ ββββββββββββ βββββββββββββββββ β
β β Agent β β Threat β β Attack β β Immune β β
β β Monitor β β Feed β β Console β β Memory β β
β ββββββββββββ βββββββββββββ ββββββββββββ βββββββββββββββββ β
ββββββββββββββββββββββββββ¬βββββββββββββββββββββββββββββββββββββ
β REST + WebSocket
ββββββββββββββββββββββββββ΄βββββββββββββββββββββββββββββββββββββ
β Python FastAPI Backend β
β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β
β β Security Engine Pipeline β β
β β ββββββββββββ βββββββββββββββββ ββββββββββββββββββββ β β
β β β Layer 1 β β Layer 2 β β Layer 3 β β β
β β β Injectionββββ Behavioral ββββ Honeypot + β β β
β β β Firewall β β Anomaly Det. β β Immune Memory β β β
β β ββββββββββββ βββββββββββββββββ ββββββββββββββββββββ β β
β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β
β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β
β β Agent Simulator (6 Live Agents) β β
β βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ β
βββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
- 5 detection strategies running in parallel:
- Pattern Matching (30+ injection patterns)
- Encoding Detection (Base64, Unicode, HTML entities, hex)
- Structural Analysis (imperative commands, role reassignment, context splitting)
- Entropy Analysis (Shannon entropy for obfuscated payloads)
- Zero-Width Character Detection (steganographic attacks)
- Returns: risk score (0-100), verdict, matched strategies, explanation
- Sub-50ms latency β does not slow down agent processing
- Builds a 6-dimensional behavioral baseline per agent:
- API call frequency, response time, action diversity, error rate, resource access, data volume
- Real-time deviation scoring with weighted anomaly detection
- Automatic status transitions: Normal β Suspicious β Quarantined
- Self-healing: agents auto-recover when behavior normalizes
- Honeypot Agent: Decoy that mimics a vulnerable agent, engages attackers, and captures attack techniques
- Immune Memory: Stores all attack signatures with metadata
- Propagation Network: When an attack is detected, the signature is broadcast to ALL agents
- Immunity Check: New inputs are cross-referenced against known signatures for instant blocking
| Component | Technology |
|---|---|
| Backend | Python 3.11+, FastAPI, Uvicorn, Pydantic |
| Frontend | React 18, Vite 5, Canvas API |
| Real-time | WebSocket (native) |
| Styling | Custom CSS (dark cybersecurity theme, glassmorphism) |
| Fonts | Inter, JetBrains Mono (Google Fonts) |
No external AI API keys required β all detection runs locally using heuristic engines and statistical analysis. Azure OpenAI integration available as a production upgrade path.
- Python 3.11+
- Node.js 18+
- npm or yarn
cd agentarmor/backend
pip install -r requirements.txt
uvicorn main:app --reload --host 0.0.0.0 --port 8000cd agentarmor/frontend
npm install
npm run devThe frontend runs on http://localhost:5173 and proxies API calls to the backend at http://localhost:8000.
- Interactive Attack Console β Type or paste any prompt injection attack and see it detected in real-time with risk scores and strategy breakdowns
- Live Agent Monitoring β 6 simulated AI agents with real-time behavioral fingerprints
- Real-Time Threat Feed β Scrolling feed of detected attacks, anomalies, and immune propagation events
- Honeypot Dashboard β See captured attacks and classified techniques
- Immune Memory Network β Visual graph showing defense propagation across all agents
- Simulate Attacks β One-click attack simulation buttons for demo presentations
| Member | Role |
|---|---|
| Abhijat | Solo Developer β Architecture, Backend, Frontend, Design |
MIT License β Built for Microsoft Build AI Hackathon 2025