hanasand
Go to Console
NewDirect actor-page monitoring for company exposure

Hanasand Threat Intelligence

High-speed company exposure alerts and actor overviews built from watched sources, fresh claim changes, and review-ready context.

Live alerts

Company exposure monitor

hanasand/company-exposure-monitor

Watch company names, domains, suppliers, brands, and portfolio companies across recent victim-claim activity.

12 min median refreshOpen
Graph ready

Ransomware actor overview

hanasand/actor-overview

Map actors to victims, claimed data, infrastructure changes, sectors, timelines, and review state.

Actor and victim pivotsOpen
Indexed feeds

Dark web exposure index

hanasand/darkweb-exposure-index

Normalized actor, company, URL, note, claim, and timing fields from leak and extortion infrastructure.

Company and actor pivotsOpen

Monitoring workflow

Find the company mention before it becomes a forwarded screenshot.

Each alert is built for the first triage decision: who posted it, which company was named, what data was claimed, when it appeared, and whether it needs action.

Alert targetCompany, vendor, domain, and brand mentions
What gets sentActor, company, claimed data, source, time, status
Refresh signalNew and changed actor-page claims
Buyer workflowWebhook, API, and console review queue

Exposure queue

Recent actor claims matched to watchlist terms

Live
ActorCompanyClaimed dataClaim timeStatus
AkiraNtd Apparel62 GB claimedcurrent
AuroraAerospace & Advanced Composites GmbH123 GB claimedcurrent
RansomHouseIrec Sasnew victim claimrecent
QilinSupplier watchlist matchunder reviewreview

Solutions

Monitoring and secure workflow tools in one place.

Go to Console

Threat Monitoring

High-speed ransomware and exposure notifications for watched companies and vendors.

Bloom Filter

Private breach and password-exposure checks without turning sensitive material into a dashboard.

Shared Reports

Package exposure findings into customer-ready review links and follow-up workflows.