Threat Intelligence
Asymmetric Defence Initiative Programme
Collaborative threat detection and analysis platform. We observe, classify, and share indicators of compromise from coordinated attack campaigns targeting European infrastructure.
Threat Indicators
7,506
97 day observation window
Source IPs Tracked
410
320 distinct subnets
Security Findings
454
Active investigations
Latest Scan
100
Threats on 2026-06-05
Multi-factor threat scoring using timing analysis, path enumeration patterns, user-agent consistency, and persistence metrics across extended observation windows.
Automated clustering of related threat actors by infrastructure overlap, temporal patterns, and attack methodology. Coordinated campaign detection across multiple observation points.
Structured abuse reporting to hosting providers and national CERTs. Coordinated disclosure of Cloudflare Workers abuse, credential harvesting campaigns, and infrastructure misuse.
ADIP Portal Launch
Public threat intelligence portal launched. Vetted researchers can request access to full IoC feeds and campaign analysis reports.
Coordinated Abuse Reports
Structured abuse reports submitted to 6 hosting providers and CERT-RO regarding coordinated credential harvesting and Cloudflare Workers misuse.
Threat Feed v1 Operational
Automated daily threat scanning with 10-factor behavioral scoring, timing coefficient analysis, and automated cluster detection deployed.
Access to full threat feeds, IoC data, and campaign reports is available to vetted security researchers, CERT teams, and qualifying organizations.
Encrypted email
PGP Key Fingerprint
2CA7 273C 6F74 467D 2240 BB01 9285 2CB3 1999 B252
Already submitted? Check the status of your vetting request.
Check vetting status →