Educational Fraud Detection Platform for Blockchain Security Research
ShadowBrokerDirvenScan is a complete forensic analysis platform combining:
- ShadowBroker OSINT - Physical world intelligence (ADS-B, AIS, satellites, GPS jamming)
- Academic Research Skills (ARS) - On-chain claim verification and fraud pattern analysis
- Blockchain Forensics - Transaction graph analysis, wallet clustering, value flow tracing
- Educational Legal Reference - Fraud precedent analysis and whistleblower process overview
This platform is for EDUCATIONAL PURPOSES ONLY. It does not provide legal advice, does not execute legal filings, and does not guarantee any outcomes.
| Prohibited Claim | Why Courts Dismiss It | Precedent |
|---|---|---|
| V2K (Voice-to-Skull) | Dismissed as "fantastic," "delusional," or "pure fantasy" | Banks v. Unknown Federal Judges (2013) |
| Microwave Harassment | No scientific basis for remote "mind control" via RF | Multiple court dismissals |
| Electronic Harassment (without physical evidence) | Lacks admissible technical foundation | Systematic dismissals |
These claims are legally indefensible. Filing them wastes court resources and can result in sanctions or criminal referral for perjury (18 U.S.C. Β§ 1621).
| Prohibited Claim | Why It Fails | Precedent |
|---|---|---|
| V2K (Voice-to-Skull / Microwave Harassment) | Courts dismiss as "fantastic," "delusional," or "pure fantasy" | Banks v. Unknown Federal Judges (2013); Whitted v. Sarasota Memorial Hospital (2024) |
| "Gaming Victim" | Not a legally recognized cause of action | Multiple dismissals |
| Valid Claim | Legal Basis | Precedent |
|---|---|---|
| FRAUD | Intentional deception | Blige v. Terry |
| EXTORTION | Threats to obtain property | Smietana v. Stephens |
| IIED (Intentional Infliction of Emotional Distress) | Extreme conduct causing severe harm | Blige v. Terry ($4.8M) |
Case: Blige v. Terry (Nevada Supreme Court, 2023) Award: $4.8M total ($2.6M compensatory + $2.2M punitive) Claims: Extortion, IIED, Civil Conspiracy
| Valid Legal Claim | Legal Basis | Required Evidence |
|---|---|---|
| FRAUD | Intentional deception | False TVL claims, fake reserve proofs, fabricated audit reports |
| EXTORTION | Threats to obtain property | Documented threats + fund transfers |
| IIED (Intentional Infliction of Emotional Distress) | Extreme/reckless conduct causing severe harm | Blige v. Terry (Nevada, 2023) β $4.8M awarded |
| UNJUST ENRICHMENT | Unfair benefit at victim's expense | Transaction flows showing unjust gain |
| SECURITIES FRAUD | Misrepresentation to investors | False projections, hidden risks, undisclosed conflicts |
Educational Reference: Blige v. Terry (Nevada Supreme Court, 2023) awarded $4.8M ($2.6M compensatory + $2.2M punitive) for extreme emotional distress caused by coordinated harassment and extortion. This is cited for educational purposes only and does not constitute legal advice.
The SEC, CFTC, and IRS have formal whistleblower programs. This section provides EDUCATIONAL INFORMATION ONLY and is not legal advice.
- SEC Whistleblower Program: https://www.sec.gov/tcr
- CFTC Whistleblower Program: https://www.cftc.gov/Complaint/Whistleblower
- IRS Whistleblower Program: https://www.irs.gov/uac/whistleblower-information
| Agency | Award Range | Notes |
|---|---|---|
| SEC | 10-30% of recovered sanctions | Requires substantial, independent information |
| CFTC | 10-30% of recovered sanctions | Requires substantial, independent information |
| IRS | 15-30% of recovered funds | Form 211 submission required |
Important: Awards are NOT guaranteed. They require:
- Successful government enforcement action against the defendant
- Recovery of funds/sanctions exceeding $1 million
- Your information being "substantial" and "independent"
- A multi-year government investigation (typically 2-5 years)
Joint whistleblower filings ARE legally possible (precedent: $28M SEC award to 4 joint claimants). However:
- You must have a formal agreement with co-filers before filing
- Consult a licensed attorney to draft this agreement
- The SEC will enforce the agreement once filed, so get it right
- DirvenScan does not draft, review, or enforce agreements β this is attorney work
These are analytical frameworks for understanding on-chain fraud patterns. This is NOT financial advice and does NOT constitute detection of actual fraud.
| System | Detection Method | What to Look For |
|---|---|---|
| PhantomBank | Genesis trace analysis | Single seed wallet with no history before large inflow |
| DirvenCoin | Smart contract analysis | Coins minted without corresponding token burn or backing |
| BullMastiff | Circular flow detection | Funds cycling between addresses with no exit to public exchange |
| PhantomLiquidity | Inflow source verification | Liquidity from addresses with zero external funding history |
| MirroredMining | Hash rate correlation | Mining rewards claimed but no corresponding computational work |
| PhantomLending | Wallet clustering | Borrower and lender in same cluster; no genuine credit extension |
| FundedFounders | Founder wallet tracing | Circular funding between founder wallets artificially inflating valuation |
| PhantomBridges | Cross-chain matching | Bridge claims with no corresponding funds on opposite chain |
| WashStaking | Multi-stake detection | Same underlying funds staked multiple times simultaneously |
| CircularNFT | Trading graph analysis | NFTs traded only between internal addresses, no external buyers |
| OracleSpoof | Price oracle comparison | Internal oracle price deviates radically from market prices |
| LiquidityMirage | TVL vs. reserves audit | Claimed TVL far exceeds verified reserve balances |
| GenesisZero | First transaction trace | Wallet funding itself on first transaction (no external source) |
| GhostLiquidity | LP balance verification | Claimed LP providers not found in blockchain state |
| SyntheticToken | Collateral verification | Stablecoin pegged but backed by <1% hard reserves |
| FlashLoanAbuse | Transaction pattern analysis | Large loans used for wash trading or oracle manipulation |
| LiquidityInflation | TVL-volume correlation | TVL increases while trading volume remains flat |
| MMManipulation | Coordinated wallet clustering | Same entity operating multiple addresses for wash trading |
| TokenomicAnomalies | Distribution analysis | Gini coefficient >0.9 (extreme concentration) or >10% annual inflation |
| Spoofing | Order book analysis | Large orders placed and cancelled without execution |
| Layering | Depth analysis | Multiple orders clustered around price, non-executable |
| MEV Attacks | Mempool ordering | Transactions reordered to extract maximum extractable value |
| Sandwich Attacks | Block ordering correlation | Victim transaction sandwiched by attacker buy/sell orders |
Critical Disclaimer: These are ANALYTICAL FRAMEWORKS. They do NOT prove fraud. They identify PATTERNS WORTH INVESTIGATING. Actual fraud determination requires:
- Verified evidence
- Legal analysis
- Often government investigation
xmr_forensics.py is an analytical tool included in this repository designed to detect artificial value inflation on EVM-compatible chains. It uses signature pattern matching for:
- Self-transactions
- Oracle manipulation
- Artificial value inflation
- Synthetic bridge events
Usage:
python openclaw-skills/shadowbroker/xmr_forensics.py --rpc http://localhost:8545 --start 3000 --end 3003Monero's privacy features make tracing difficult but not impossible:
| Method | What Works | What Doesn't | Requires |
|---|---|---|---|
| Memory Forensics | Extracts private keys from running wallet | Doesn't work on offline wallets | Device access + forensics expertise |
| Wallet File Analysis | Decrypts local wallet files (.keys, cache) | Doesn't work on hardware wallets | Device access |
| Poisoned Outputs | Marks specific XMR to track | Limited effectiveness | Advance setup |
| Exchange Subpoena | Links XMR withdrawal to regulated exchange | Exchange may lack records | Legal process + law enforcement |
| Transaction Uniformity | Statistical analysis of transaction patterns | Probabilistic, not definitive | Computer science background |
Important Disclaimer: This is ACADEMIC INFORMATION. Using these methods WITHOUT legal authority is illegal:
- Unauthorized device access = hacking charges
- Network traffic capture = wiretapping charges
- Data access = computer fraud charges
If you suspect a crime: Report to law enforcement. Do not attempt forensics yourself.
git clone https://github.com/dirvenmjh/ShadowBrokerDirvenScan
cd ShadowBrokerDirvenScan
cp .env.example .env
# Edit .env with your API keys
docker compose up -dOpen http://localhost:3000 to view the dashboard.
- Docker or Podman for containerized deployment
- Node.js 18+ and Python 3.11-3.12 for local development
- API keys (optional):
opensky-network.org(flights)aisstream.io(maritime)
docker compose pull
docker compose up -d# Backend
cd backend
python -m venv venv
source venv/bin/activate # macOS/Linux
# venv\Scripts\activate # Windows
pip install -e .
# Frontend
cd ../frontend
npm install
npm run devStarts:
- Frontend: http://localhost:3000
- Backend: http://localhost:8000
Note: Web3 deployment is EXPERIMENTAL. Traditional HTTP access is recommended for all users.
web3://dirvenacademy.hub
Requires: Brave browser or MetaMask extension. Chrome/Edge alone cannot resolve .hub domains.
- Commercial flights (~5,000+)
- Military aircraft
- Private jets (with owner data)
- GPS jamming detection
- Holding pattern analysis
- AIS vessels (25,000+)
- US Navy carriers (11 active)
- Fishing activity tracking
- Ship classification by type
- Orbital tracking (2,000+ satellites)
- Mission-type classification
- Ground station networks (SatNOGS, TinyGS)
- GDELT conflict events
- Ukraine frontline tracking
- Regional dossiers (population, languages, government)
- Satellite imagery (Sentinel-2, MODIS)
- 500+ KiwiSDR receivers
- Live radio tuning
- Police/fire scanner feeds
- Meshtastic mesh radio integration
- APRS amateur radio positioning
- 11,000+ CCTV cameras (6 countries)
- 2,000+ data centers
- 35,000+ power plants
- Military installations
- Internet outage monitoring
- NASA FIRMS fire hotspots
- Volcano locations
- Weather alerts
- Air quality (PM2.5)
- Earthquakes (24h)
- Space weather indicators
- Gate personas (pseudonymous identities)
- Obfuscated message relay
- Dead Drop peer-to-peer exchange
- Meshtastic integration
- WARNING: NOT end-to-end encrypted. Treat as public.
| Source | Update | Key Required |
|---|---|---|
| OpenSky Network | ~60s | Yes |
| adsb.lol | ~60s | No |
| aisstream.io | Real-time | Yes |
| CelesTrak | ~60s | No |
| USGS Earthquake | ~60s | No |
| GDELT Project | ~6h | No |
| NASA FIRMS | ~120s | No |
| Shodan | On-demand | Yes |
| KiwiSDR | ~30min | No |
| Meshtastic MQTT | Real-time | No |
See full list in Data Sources & APIs section.
# REQUIRED for flight data
OPENSKY_CLIENT_ID=your_id
OPENSKY_CLIENT_SECRET=your_secret
# Optional β enhances coverage
AIS_API_KEY=your_aisstream_key
SHODAN_API_KEY=your_shodan_key
SH_CLIENT_ID=your_sentinel_hub_id
SH_CLIENT_SECRET=your_sentinel_hub_secretNEXT_PUBLIC_API_URL=http://localhost:8000
BACKEND_PORT=8000ShadowBrokerDirvenScan/
βββ backend/
β βββ main.py # FastAPI application
β βββ services/
β β βββ data_fetcher.py # Data orchestration
β β βββ fetchers/ # Individual data source handlers
β β βββ mesh/ # InfoNet protocol stack
β βββ config/
βββ frontend/
β βββ src/
β β βββ app/
β β β βββ page.tsx # Main dashboard
β β βββ components/
β β βββ MaplibreViewer.tsx
β β βββ MeshChat.tsx
β β βββ ...
β βββ package.json
βββ desktop-shell/ # Tauri desktop application
This platform demonstrates analytical methods for identifying on-chain patterns that MIGHT indicate fraud. This is NOT:
- Financial advice
- Professional investigation
- Legal evidence
- Fraud detection guarantee
It IS:
- Open-source code for analysis
- Educational reference material
- Pattern identification framework
- Research tool for security professionals
- Blockchain Fundamentals: Understand wallet addresses, transactions, smart contracts
- Transaction Tracing: Follow fund flows through exchanges and protocols
- Smart Contract Auditing: Identify minting, burning, and reserve issues
- Statistical Analysis: Detect market manipulation patterns
- Blige v. Terry (Nevada, 2023): $4.8M IIED award for coordinated harassment/extortion
- SEC v. Celsius Network (2023): $3.6B settlement for fraud/misrepresentation
- CFTC v. BitMEX (2021): $100M settlement for unlicensed derivatives trading
- SEC Whistleblower: https://www.sec.gov/tcr
- CFTC Whistleblower: https://www.cftc.gov/Complaint/Whistleblower
- IRS Whistleblower: https://www.irs.gov/uac/whistleblower-information
β File whistleblower claims automatically
β Provide legal advice
β Guarantee fraud detection
β Execute legal actions
β Guarantee award recovery
β Encrypt communications (InfoNet)
β Prove fraud in court
β
Consult a licensed attorney before filing any legal claim
β
Verify all evidence independently
β
Understand perjury penalties (18 U.S.C. Β§ 1621): up to 5 years imprisonment for false statements
β
Report suspected crimes to law enforcement, not to Copilot or this platform
β
Never attempt unauthorized forensics (device access, network capture, data extraction)
CC-BY-NC 4.0 (Educational & Research Use)
Based on:
- ShadowBroker by BigBodyCobain (https://github.com/bigbodycobain/Shadowbroker)
- Academic research frameworks
Copyright (c) 2026 DirvenAcademy
| Who | What |
|---|---|
| @bigbodycobain | ShadowBroker OSINT platform |
| @chr0n1x | Kubernetes / Helm architecture |
| @suranyami | Multi-arch Docker builds |
| Community | Bug reports, feature requests, research |
THIS PLATFORM IS PROVIDED "AS IS" FOR EDUCATIONAL AND RESEARCH PURPOSES ONLY.
- NO WARRANTIES: Not warrantied for fitness for any particular purpose
- NO LIABILITY: Users assume all risk; we are not liable for consequences
- NOT LEGAL ADVICE: Consult an attorney for all legal matters
- NOT PROFESSIONAL INVESTIGATION: Not a substitute for law enforcement
- NOT FINANCIAL ADVICE: Do not use for investment decisions
- EXPERIMENTAL FEATURES: InfoNet and other features are EXPERIMENTAL
- FALSE STATEMENTS ARE CRIMES: Perjury (18 U.S.C. Β§ 1621): up to 5 years imprisonment
By using this platform, you agree to:
1. Use it for lawful purposes only
2. Not use it to circumvent laws or regulations
3. Consult legal counsel before filing any claim
4. Take full responsibility for your actions
5. Hold harmless the developers and contributors
Built with β and a commitment to educational integrity. Stay curious. Stay legal.