Geopolitical & Cyber Threat Intelligence

Bridge the gap between
geopolitics and cyber threats

GEON correlates diplomatic escalations, armed conflicts, and sanctions with cyber threat activity from APT groups and malware campaigns. A unified intelligence platform that reveals the patterns others miss.

Open Dashboards Explore Threat Graph

Capabilities

GDELT Events

Continuous ingestion of global diplomatic and military events from the GDELT Project. CAMEO-coded, geolocated, and scored on the Goldstein scale for tension analysis.

Cyber Threats

Structured CTI from OpenCTI with STIX2 graph modeling. Connectors for MITRE ATT&CK, AlienVault OTX, CISA KEV, and CVE feeds provide continuous threat awareness.

Correlation Engine

Automated rules detect patterns across data silos: diplomatic escalations paired with APT campaigns, sanctions triggering cyber retaliation, and rhetoric shifts signaling emerging threats.

Real-time Dashboards

Grafana dashboards powered by Elasticsearch with global event maps, country risk profiles, correlation timelines, and article feeds. Everything visualized, searchable, and updated in near real time.

Data Sources

GDELT

ACLED

OFAC / EU / UN Sanctions

MITRE ATT&CK

AlienVault OTX

CISA KEV

CVE / NVD

RSS Feeds

The Stack

n8n · Elasticsearch · GDELT · OpenCTI

Elasticsearch Storage, search, indexation

Grafana Dashboards & visualization

OpenCTI STIX2 knowledge graph

n8n Workflow automation & RSS

Nginx + Authelia Reverse proxy, TLS, MFA

Python Ingestors GDELT, ACLED, sanctions pipelines

Bridge the gap betweengeopolitics and cyber threats