▲
╱ ╲
╱ ╲
╱ ◉ ╲
╱ ╱ ╲ ╲
╱ ╱ ╲ ╲
╱━━━━━━━━━━━╲
╱ ╲
╱ ╲
╱ 𓂀 𓃣 𓁹 ╲
━━━━━━━━━━━━━━━━━━━━━
maritime intelligence, submarine bases, CVEs, ransomware, and more.*
[](LICENSE) [](#) [](https://d3js.org) [](#data-sources) [](#)
---
---
𓁹 Intelligence Modules
| ### Orbital | Module | Source | |:--|:--| | **Satellite Tracker** — 847+ LEO/GEO/MIL objects | CelesTrak TLE | | **Debris Fields** — Cosmos 2251, Fengyun-1C clouds | CelesTrak | | **ISS Live Position** — 5-second refresh | wheretheiss.at | ### Network | Module | Source | |:--|:--| | **BGP Hijacks** — route anomalies & RPKI invalid | Cloudflare Radar | | **DDoS Pulse** — volumetric attack tracking | Cloudflare Radar | | **Internet Shutdowns** — BGP withdrawal detection | IODA / NetBlocks | | **CertStream Live** — phishing & typosquat detection | CertStream | ### Threat Intel | Module | Source | |:--|:--| | **Critical CVEs** — CVSS ≥ 9.0 with exploit status | NIST NVD API | | **Ransomwatch** — gang victim posts | ransomwatch | | **Phishing Feed** — brand abuse domains | OpenPhish | | **ICS/SCADA Exposure** — Modbus/DNP3 devices | Shodan | | ### Maritime | Module | Source | |:--|:--| | **Maritime Picture** — AIS warships & tankers | MarineTraffic | | **Piracy & Incidents** — IMB live reports | IMB PRC / UKMTO | | **Submarine Intel** — 14 bases, 6 nations | FAS.org / GlobalSecurity | | **Sub Hunters (P-8)** — patrol orbit detection | ADS-B / OpenSky | ### Signals | Module | Source | |:--|:--| | **GPS Jamming Map** — ADS-B interference data | GPSJam.org | | **Tor Exit Heatmap** — node density by country | Tor Project | | **Paste Monitor** — credential dump detection | HIBP | ### Infrastructure | Module | Source | |:--|:--| | **Submarine Cables** — 16 major global routes | TeleGeography | | **Breach Timeline** — live data breach events | HIBP | | **Flight Tracking** — military callsign filter | OpenSky Network | |
𓃣 Map Controls
┌─────────────────────────────────────────────────────────┐
│ │
│ SCROLL WHEEL ──── Zoom in/out │
│ CLICK + DRAG ──── Pan the map │
│ DOUBLE CLICK ──── Zoom to point │
│ CLICK COUNTRY ─── Intelligence card │
│ CLICK ANY DOT ─── Info popup (sats, events, vessels) │
│ + / − / RESET ─── Zoom controls (bottom-left) │
│ │
└─────────────────────────────────────────────────────────┘
𓂀 Layer Toggles
Toggle any combination of data layers on the map:
┌─────┐ ┌─────┐ ┌──────────┐ ┌────────┐ ┌──────┐ ┌────────┐
│ LEO │ │ GEO │ │ MILITARY │ │ DEBRIS │ │ ARCS │ │ EVENTS │
└─────┘ └─────┘ └──────────┘ └────────┘ └──────┘ └────────┘
┌────────┐ ┌─────────┐ ┌────────┐ ┌──────────┐ ┌───────────┐
│ CABLES │ │ FLIGHTS │ │ SHODAN │ │ MARITIME │ │ SUB BASES │
└────────┘ └─────────┘ └────────┘ └──────────┘ └───────────┘
Header Controls
| Button | Function |
|---|---|
SCAN: ON/OFF |
Toggle CRT scanline overlay |
THEME: DARK/MATRIX |
Dark mode ↔ green-on-black terminal |
FULLSCREEN |
Browser fullscreen mode |
SOUND: ON/OFF |
Audio feedback — each event type has a distinct tone |
TIMELINE |
24h incident timeline bar |
EXPORT |
Download map as timestamped PNG |
Quick Start
# Clone
git clone https://git.churchofmalware.org/Anubisdarkwatch/EyeOfAnubis.git
# Open
cd eye-of-anubis
open index.html
# Or serve locally
python3 -m http.server 8080
Zero dependencies. Zero build step. One file. Open it.
Repository
Hosted on Gitea at git.churchofmalware.org/Anubisdarkwatch/EyeOfAnubis
To self-host, just serve index.html from any web server — or simply open the file directly in a browser.
Data Sources
All feeds are public and open source — no API keys required:
| Source | Data | Refresh |
|:--|:--|:--:|
| [CelesTrak](https://celestrak.org) | Satellite TLE orbital data | 5 min |
| [Cloudflare Radar](https://radar.cloudflare.com) | BGP hijacks, DDoS | 10 min |
| [GPSJam](https://gpsjam.org) | GPS interference zones | Daily |
| [NIST NVD](https://nvd.nist.gov) | Critical CVEs | 30 min |
| [USGS](https://earthquake.usgs.gov) | Seismic events | 10 min |
| [wheretheiss.at](https://wheretheiss.at) | ISS live position | 5 sec |
| [IMB PRC](https://www.icc-ccs.org) | Piracy incident reports | Feed |
| [FAS.org](https://fas.org) | Submarine base intel | Static |
| [GlobalSecurity.org](https://globalsecurity.org) | Military facility data | Static |
| [TeleGeography](https://submarinecablemap.com) | Submarine cable routes | Static |
| [OpenSky Network](https://opensky-network.org) | Flight tracking / ADS-B | Feed |
Architecture
eye-of-anubis/
│
├── index.html ← The entire dashboard (single file, ~400KB)
│ ├── Inline CSS ← Dark terminal aesthetic, all responsive
│ ├── Inline GeoJSON ← 177 countries baked in (no external fetch)
│ ├── D3.js (CDN) ← Map projection + zoom
│ └── Vanilla JS ← All feeds, layers, popups, sounds
│
├── README.md
├── LICENSE (MIT)
└── .gitignore
No frameworks. No build tools. No node_modules.
No webpack. No React. No TypeScript.
Just one HTML file and the will to see everything.
Roadmap
- [ ] Live CertStream WebSocket integration
- [ ] Live Ransomwatch JSON feed
- [ ] Tor Metrics API — real exit node density
- [ ] Live AIS vessel feed (MarineTraffic / VesselFinder)
- [ ] OpenSky live military flight tracking
- [ ] HIBP breach notification integration
- [ ] Shodan API for real ICS exposure counts
- [ ] Mobile responsive layout
- [ ] Saved view presets
- [ ] Alert webhook (Discord / Slack)
╱━━━╲
╱ ◉ ╲
╱━━━━━━━╲
╱ ╲
━━━━━━━━━━━━━
[](https://git.churchofmalware.org/Anubisdarkwatch) [](https://anubisdarkwatch.com)