Gazi Fardin Zafor Suvro@SuvroGfz

Third-party vendors are the fastest-growing attack surface in enterprise security, yet most teams still assess them with manual questionnaires and stale spreadsheets. VendorGhost fixes that. Enter any vendor domain. Six LangGraph agents run in parallel—subdomain discovery, breach OSINT, infrastructure exposure (Shodan), hiring maturity, news incidents, and trust-page verification—all powered by Bright Data (SERP API, Web Unlocker, Scraping Browser, and Web Scraper datasets). An LLM synthesizes the evidence into a structured risk report with an APPROVE / CAUTION / DO NOT ONBOARD verdict, downloadable PDF, and cited findings. Progress streams live to the dashboard via Server-Sent Events. Target users: security teams, GRC analysts, procurement, and startups doing vendor due diligence before signing contracts. Unique features: • Real-time multi-module investigation in ~90 seconds • RAG chat over saved evidence (“Were credentials leaked?”) • Optional Cognee graph memory for cross-vendor recall • Vendor monitoring with Telegram alerts on score/verdict changes • Organization dashboard with risk distribution and watchlists • Mock mode for offline demos without API keys Built with FastAPI, LangGraph, Vite/React, Supabase, and Bright Data as the core data layer.

🌍 Hybrid Hackathon | 💻 Online Build: May 25–30,2026 | 📍 SF Onsite Finale: May 30–31,2026 We’ve unlocked the web for your AI. Now build what wasn’t possible before. Build AI agents with live web data, then join the SF onsite finale at Bright Data’s new Web Data Loft. 🚀 The onsite experience will take place during the opening of Bright Data’s new SF space, The Web Data Loft. 📍 On-site Venue (May 30–31): The Web Data Loft 625 2nd St, San Francisco, CA 🏆 $18,300 cash prize + Bright Data AI Startup Program opportunities 🍕 Free food, drinks, networking, workshops, mentorship, and live demos 🎁 Onsite attendees are automatically entered into a live giveaway for 4 × $100 Amazon gift cards. 🧑‍💻 Apply now to build AI agents powered by real-time web access.