Skip to content

dirvenmjh/ShadowBrokerDirvenScan

Β 
Β 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

325 Commits
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 
Β 

Repository files navigation

πŸ” ShadowBrokerDirvenScan

Educational Fraud Detection Platform for Blockchain Security Research

On-Chain Forensics + OSINT Analysis

ShadowBrokerDirvenScan is a complete forensic analysis platform combining:

  1. ShadowBroker OSINT - Physical world intelligence (ADS-B, AIS, satellites, GPS jamming)
  2. Academic Research Skills (ARS) - On-chain claim verification and fraud pattern analysis
  3. Blockchain Forensics - Transaction graph analysis, wallet clustering, value flow tracing
  4. Educational Legal Reference - Fraud precedent analysis and whistleblower process overview

⚠️ LEGAL DISCLAIMER - READ FIRST

This platform is for EDUCATIONAL PURPOSES ONLY. It does not provide legal advice, does not execute legal filings, and does not guarantee any outcomes.

❌ DO NOT FILE THESE CLAIMS

Prohibited Claim Why Courts Dismiss It Precedent
V2K (Voice-to-Skull) Dismissed as "fantastic," "delusional," or "pure fantasy" Banks v. Unknown Federal Judges (2013)
Microwave Harassment No scientific basis for remote "mind control" via RF Multiple court dismissals
Electronic Harassment (without physical evidence) Lacks admissible technical foundation Systematic dismissals

These claims are legally indefensible. Filing them wastes court resources and can result in sanctions or criminal referral for perjury (18 U.S.C. Β§ 1621).


🚨 ADDITIONAL LEGAL WARNING

β›” DO NOT FILE THESE LAWSUITS

Prohibited Claim Why It Fails Precedent
V2K (Voice-to-Skull / Microwave Harassment) Courts dismiss as "fantastic," "delusional," or "pure fantasy" Banks v. Unknown Federal Judges (2013); Whitted v. Sarasota Memorial Hospital (2024)
"Gaming Victim" Not a legally recognized cause of action Multiple dismissals

βœ… DO FILE THESE VALID CLAIMS

Valid Claim Legal Basis Precedent
FRAUD Intentional deception Blige v. Terry
EXTORTION Threats to obtain property Smietana v. Stephens
IIED (Intentional Infliction of Emotional Distress) Extreme conduct causing severe harm Blige v. Terry ($4.8M)

πŸ“š Successful Precedent

Case: Blige v. Terry (Nevada Supreme Court, 2023) Award: $4.8M total ($2.6M compensatory + $2.2M punitive) Claims: Extortion, IIED, Civil Conspiracy


βœ… VALID FRAUD CLAIMS (With Supporting Evidence)

Valid Legal Claim Legal Basis Required Evidence
FRAUD Intentional deception False TVL claims, fake reserve proofs, fabricated audit reports
EXTORTION Threats to obtain property Documented threats + fund transfers
IIED (Intentional Infliction of Emotional Distress) Extreme/reckless conduct causing severe harm Blige v. Terry (Nevada, 2023) β€” $4.8M awarded
UNJUST ENRICHMENT Unfair benefit at victim's expense Transaction flows showing unjust gain
SECURITIES FRAUD Misrepresentation to investors False projections, hidden risks, undisclosed conflicts

Educational Reference: Blige v. Terry (Nevada Supreme Court, 2023) awarded $4.8M ($2.6M compensatory + $2.2M punitive) for extreme emotional distress caused by coordinated harassment and extortion. This is cited for educational purposes only and does not constitute legal advice.


πŸ† Whistleblower Process Overview (Educational Reference)

The SEC, CFTC, and IRS have formal whistleblower programs. This section provides EDUCATIONAL INFORMATION ONLY and is not legal advice.

Official Whistleblower Resources

Awards (Factual Information Only)

Agency Award Range Notes
SEC 10-30% of recovered sanctions Requires substantial, independent information
CFTC 10-30% of recovered sanctions Requires substantial, independent information
IRS 15-30% of recovered funds Form 211 submission required

Important: Awards are NOT guaranteed. They require:

  1. Successful government enforcement action against the defendant
  2. Recovery of funds/sanctions exceeding $1 million
  3. Your information being "substantial" and "independent"
  4. A multi-year government investigation (typically 2-5 years)

Joint Filings (Factual Information Only)

Joint whistleblower filings ARE legally possible (precedent: $28M SEC award to 4 joint claimants). However:

  • You must have a formal agreement with co-filers before filing
  • Consult a licensed attorney to draft this agreement
  • The SEC will enforce the agreement once filed, so get it right
  • DirvenScan does not draft, review, or enforce agreements β€” this is attorney work

23 Fraud Detection Systems (Educational Reference)

These are analytical frameworks for understanding on-chain fraud patterns. This is NOT financial advice and does NOT constitute detection of actual fraud.

System Detection Method What to Look For
PhantomBank Genesis trace analysis Single seed wallet with no history before large inflow
DirvenCoin Smart contract analysis Coins minted without corresponding token burn or backing
BullMastiff Circular flow detection Funds cycling between addresses with no exit to public exchange
PhantomLiquidity Inflow source verification Liquidity from addresses with zero external funding history
MirroredMining Hash rate correlation Mining rewards claimed but no corresponding computational work
PhantomLending Wallet clustering Borrower and lender in same cluster; no genuine credit extension
FundedFounders Founder wallet tracing Circular funding between founder wallets artificially inflating valuation
PhantomBridges Cross-chain matching Bridge claims with no corresponding funds on opposite chain
WashStaking Multi-stake detection Same underlying funds staked multiple times simultaneously
CircularNFT Trading graph analysis NFTs traded only between internal addresses, no external buyers
OracleSpoof Price oracle comparison Internal oracle price deviates radically from market prices
LiquidityMirage TVL vs. reserves audit Claimed TVL far exceeds verified reserve balances
GenesisZero First transaction trace Wallet funding itself on first transaction (no external source)
GhostLiquidity LP balance verification Claimed LP providers not found in blockchain state
SyntheticToken Collateral verification Stablecoin pegged but backed by <1% hard reserves
FlashLoanAbuse Transaction pattern analysis Large loans used for wash trading or oracle manipulation
LiquidityInflation TVL-volume correlation TVL increases while trading volume remains flat
MMManipulation Coordinated wallet clustering Same entity operating multiple addresses for wash trading
TokenomicAnomalies Distribution analysis Gini coefficient >0.9 (extreme concentration) or >10% annual inflation
Spoofing Order book analysis Large orders placed and cancelled without execution
Layering Depth analysis Multiple orders clustered around price, non-executable
MEV Attacks Mempool ordering Transactions reordered to extract maximum extractable value
Sandwich Attacks Block ordering correlation Victim transaction sandwiched by attacker buy/sell orders

Critical Disclaimer: These are ANALYTICAL FRAMEWORKS. They do NOT prove fraud. They identify PATTERNS WORTH INVESTIGATING. Actual fraud determination requires:

  • Verified evidence
  • Legal analysis
  • Often government investigation

XMR (Monero) Tracing Methods (Educational Reference)

πŸ› οΈ Forensic Analysis Tool

xmr_forensics.py is an analytical tool included in this repository designed to detect artificial value inflation on EVM-compatible chains. It uses signature pattern matching for:

  • Self-transactions
  • Oracle manipulation
  • Artificial value inflation
  • Synthetic bridge events

Usage:

python openclaw-skills/shadowbroker/xmr_forensics.py --rpc http://localhost:8545 --start 3000 --end 3003

What Academic Research Shows

Monero's privacy features make tracing difficult but not impossible:

Method What Works What Doesn't Requires
Memory Forensics Extracts private keys from running wallet Doesn't work on offline wallets Device access + forensics expertise
Wallet File Analysis Decrypts local wallet files (.keys, cache) Doesn't work on hardware wallets Device access
Poisoned Outputs Marks specific XMR to track Limited effectiveness Advance setup
Exchange Subpoena Links XMR withdrawal to regulated exchange Exchange may lack records Legal process + law enforcement
Transaction Uniformity Statistical analysis of transaction patterns Probabilistic, not definitive Computer science background

Important Disclaimer: This is ACADEMIC INFORMATION. Using these methods WITHOUT legal authority is illegal:

  • Unauthorized device access = hacking charges
  • Network traffic capture = wiretapping charges
  • Data access = computer fraud charges

If you suspect a crime: Report to law enforcement. Do not attempt forensics yourself.


Quick Start (Docker)

git clone https://github.com/dirvenmjh/ShadowBrokerDirvenScan
cd ShadowBrokerDirvenScan
cp .env.example .env
# Edit .env with your API keys
docker compose up -d

Open http://localhost:3000 to view the dashboard.


πŸš€ Getting Started

Prerequisites

  • Docker or Podman for containerized deployment
  • Node.js 18+ and Python 3.11-3.12 for local development
  • API keys (optional):
    • opensky-network.org (flights)
    • aisstream.io (maritime)

Docker Deployment

docker compose pull
docker compose up -d

Local Development

# Backend
cd backend
python -m venv venv
source venv/bin/activate  # macOS/Linux
# venv\Scripts\activate  # Windows
pip install -e .

# Frontend
cd ../frontend
npm install
npm run dev

Starts:


🌐 Web3 Access

Note: Web3 deployment is EXPERIMENTAL. Traditional HTTP access is recommended for all users.

web3://dirvenacademy.hub

Requires: Brave browser or MetaMask extension. Chrome/Edge alone cannot resolve .hub domains.


✨ Features

πŸ›©οΈ Aviation Tracking

  • Commercial flights (~5,000+)
  • Military aircraft
  • Private jets (with owner data)
  • GPS jamming detection
  • Holding pattern analysis

🚒 Maritime Tracking

  • AIS vessels (25,000+)
  • US Navy carriers (11 active)
  • Fishing activity tracking
  • Ship classification by type

πŸ›°οΈ Satellites & Space

  • Orbital tracking (2,000+ satellites)
  • Mission-type classification
  • Ground station networks (SatNOGS, TinyGS)

🌍 Geopolitics & Intelligence

  • GDELT conflict events
  • Ukraine frontline tracking
  • Regional dossiers (population, languages, government)
  • Satellite imagery (Sentinel-2, MODIS)

πŸ“» SIGINT & Radio

  • 500+ KiwiSDR receivers
  • Live radio tuning
  • Police/fire scanner feeds
  • Meshtastic mesh radio integration
  • APRS amateur radio positioning

πŸ“· Surveillance & Infrastructure

  • 11,000+ CCTV cameras (6 countries)
  • 2,000+ data centers
  • 35,000+ power plants
  • Military installations
  • Internet outage monitoring

πŸ”₯ Environmental Monitoring

  • NASA FIRMS fire hotspots
  • Volcano locations
  • Weather alerts
  • Air quality (PM2.5)
  • Earthquakes (24h)
  • Space weather indicators

πŸ§… InfoNet Decentralized Mesh (Experimental)

  • Gate personas (pseudonymous identities)
  • Obfuscated message relay
  • Dead Drop peer-to-peer exchange
  • Meshtastic integration
  • WARNING: NOT end-to-end encrypted. Treat as public.

πŸ“Š Data Sources

Source Update Key Required
OpenSky Network ~60s Yes
adsb.lol ~60s No
aisstream.io Real-time Yes
CelesTrak ~60s No
USGS Earthquake ~60s No
GDELT Project ~6h No
NASA FIRMS ~120s No
Shodan On-demand Yes
KiwiSDR ~30min No
Meshtastic MQTT Real-time No

See full list in Data Sources & APIs section.


πŸ”§ Environment Variables

Backend (.env)

# REQUIRED for flight data
OPENSKY_CLIENT_ID=your_id
OPENSKY_CLIENT_SECRET=your_secret

# Optional β€” enhances coverage
AIS_API_KEY=your_aisstream_key
SHODAN_API_KEY=your_shodan_key
SH_CLIENT_ID=your_sentinel_hub_id
SH_CLIENT_SECRET=your_sentinel_hub_secret

Frontend

NEXT_PUBLIC_API_URL=http://localhost:8000
BACKEND_PORT=8000

πŸ“ Project Structure

ShadowBrokerDirvenScan/
β”œβ”€β”€ backend/
β”‚   β”œβ”€β”€ main.py              # FastAPI application
β”‚   β”œβ”€β”€ services/
β”‚   β”‚   β”œβ”€β”€ data_fetcher.py  # Data orchestration
β”‚   β”‚   β”œβ”€β”€ fetchers/        # Individual data source handlers
β”‚   β”‚   └── mesh/            # InfoNet protocol stack
β”‚   └── config/
β”œβ”€β”€ frontend/
β”‚   β”œβ”€β”€ src/
β”‚   β”‚   β”œβ”€β”€ app/
β”‚   β”‚   β”‚   └── page.tsx     # Main dashboard
β”‚   β”‚   └── components/
β”‚   β”‚       β”œβ”€β”€ MaplibreViewer.tsx
β”‚   β”‚       β”œβ”€β”€ MeshChat.tsx
β”‚   β”‚       └── ...
β”‚   └── package.json
└── desktop-shell/           # Tauri desktop application

πŸ” Fraud Detection (Educational)

This platform demonstrates analytical methods for identifying on-chain patterns that MIGHT indicate fraud. This is NOT:

  • Financial advice
  • Professional investigation
  • Legal evidence
  • Fraud detection guarantee

It IS:

  • Open-source code for analysis
  • Educational reference material
  • Pattern identification framework
  • Research tool for security professionals

πŸ“š Educational Resources

On-Chain Analysis

  • Blockchain Fundamentals: Understand wallet addresses, transactions, smart contracts
  • Transaction Tracing: Follow fund flows through exchanges and protocols
  • Smart Contract Auditing: Identify minting, burning, and reserve issues
  • Statistical Analysis: Detect market manipulation patterns

Legal Precedent (Educational)

  • Blige v. Terry (Nevada, 2023): $4.8M IIED award for coordinated harassment/extortion
  • SEC v. Celsius Network (2023): $3.6B settlement for fraud/misrepresentation
  • CFTC v. BitMEX (2021): $100M settlement for unlicensed derivatives trading

Official Government Resources


⚠️ CRITICAL WARNINGS

What This Platform Does NOT Do

❌ File whistleblower claims automatically
❌ Provide legal advice
❌ Guarantee fraud detection
❌ Execute legal actions
❌ Guarantee award recovery
❌ Encrypt communications (InfoNet)
❌ Prove fraud in court

What You MUST Do

βœ… Consult a licensed attorney before filing any legal claim
βœ… Verify all evidence independently
βœ… Understand perjury penalties (18 U.S.C. Β§ 1621): up to 5 years imprisonment for false statements
βœ… Report suspected crimes to law enforcement, not to Copilot or this platform
βœ… Never attempt unauthorized forensics (device access, network capture, data extraction)


πŸ“œ License

CC-BY-NC 4.0 (Educational & Research Use)

Based on:

Copyright (c) 2026 DirvenAcademy


🀝 Contributors

Who What
@bigbodycobain ShadowBroker OSINT platform
@chr0n1x Kubernetes / Helm architecture
@suranyami Multi-arch Docker builds
Community Bug reports, feature requests, research

βš–οΈ Final Disclaimer

THIS PLATFORM IS PROVIDED "AS IS" FOR EDUCATIONAL AND RESEARCH PURPOSES ONLY.

- NO WARRANTIES: Not warrantied for fitness for any particular purpose
- NO LIABILITY: Users assume all risk; we are not liable for consequences
- NOT LEGAL ADVICE: Consult an attorney for all legal matters
- NOT PROFESSIONAL INVESTIGATION: Not a substitute for law enforcement
- NOT FINANCIAL ADVICE: Do not use for investment decisions
- EXPERIMENTAL FEATURES: InfoNet and other features are EXPERIMENTAL
- FALSE STATEMENTS ARE CRIMES: Perjury (18 U.S.C. Β§ 1621): up to 5 years imprisonment

By using this platform, you agree to:
1. Use it for lawful purposes only
2. Not use it to circumvent laws or regulations
3. Consult legal counsel before filing any claim
4. Take full responsibility for your actions
5. Hold harmless the developers and contributors

Built with β˜• and a commitment to educational integrity. Stay curious. Stay legal.

About

Open-source intelligence for the global theater. Track everything from the corporate/private jets of the wealthy, and spy satellites, to seismic events in one unified interface. Hook an AI agent up to have it parse through data and find previously unseen correlations. The knowledge is available to all but rarely aggregated in the open, until now.

Resources

License

Contributing

Stars

0 stars

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages

  • Python 60.8%
  • TypeScript 34.8%
  • Rust 2.4%
  • JavaScript 1.2%
  • Shell 0.3%
  • PowerShell 0.2%
  • Other 0.3%