LunarChain
Menu
Scroll

Building the worlds largest open threat intelligence database

Drag to rotate
Click to interact
Arcs show shared entities
Linked Reports
No intelligence, consider adjusting filters

LunarChain's Mission

Building the worlds largest threat intelligence platform for agentic systems

Large-Scale Ingestion

LunarChain continuously ingests high-volume global intelligence from open web, specialist feeds, and hard-to-monitor channels across cyber and physical security domains.

New intelligence sources are continuously onboarded to expand coverage and reduce blind spots.

AI Correlation & Prediction

Our intelligence graph applies AI-powered correlation and predictive modeling to connect entities, detect high-signal patterns, and surface emerging threats earlier.

IOCs, threat actors, infrastructure, campaigns, locations, and attack patterns are linked in one model for deeper investigation and alerting.

Accessible Intelligence Delivery

Intelligence is delivered through an intuitive platform and agent-ready interfaces, enabling fast lookups, automated workflows, and operational decision support.

Teams can operationalize this intelligence through structured query workflows, alerting pipelines, and real-time analysis surfaces.

Platform Architecture

The core of our platform, and how we deliver our intelligence.

Queries
AI and Platform Powered Intelligence Querying
Query our intelligence graph via our AI Agent, or build custom scheduled queries via the LunarChain platform.
Examples
Give me the latest IOCs associated with APT41
Ask our AI Agent, and it will handle the dirty work of querying and invesigateding all available intelligence.
Give me the latest report involving malware intel that poses threats to Ford in Europe
Ask our AI Agent, or use our platforms query builder to schedule this query, and receive alerts.
Targets
Multiple Queries, Common Intelligence Goal
A target can be built from multiple queries, allowing for deeper reporting and alerting capabilities.
Setting up targets povides richer context and enables reporting
Having a target allows you to monitor for threats around a common entity from multiple angles, and LunarChain supports generating threat reports covering a targets findings and stance.
Our Intelligence Agent
Perform AI Assisted Intel Lookups with LunarChains Intelligence Agent
Query our intelligence graph with natural language, and have our AI agent query, interpret and report on the results immediately, surfing rich IOCs and relationships.
Alerts
Set up automated alerting and reporting.
Realtime alerting can be configured when we have hits on queries you have enabled notificatins for, allowing for immediate investigation and response.
Manage the Alert Lifecylce
LunarChain allows alerts to be assigned to users onboarded to the platform. A user can change the state of an alert and add comments indicating its status. A user can assign an alert to another user to handle.

A deeper dive into our mission

Of creating the worlds largest open database of high fidelity threat intelligence

Reconnaissance

Top tier intelligence feeds

Every public and underground signal is ingested, normalized, and enriched before it hits our intelligence graph.

RSS & advisoriesForums & dark webSocial chatterPaste & leaksMalware sandboxesCVE & vuln feeds
RSS & Blogs
Forums & Dark Web
Social Signals
CVE & Vuln Feeds
LunarChain
Reporting
Alerting
Intelligence

Investigation

From big data to nuanced threat intelligence

Automated Investigation & Threat Correlation

LunarChain automates the full threat intelligence pipeline — from high-accuracy, IOC, location, tool, infastructure and threat actor extraction and profiling to contextual threat reasoning — we surface high-confidence intelligence enriched with global context.

Threat ActorsDeployed Malware XEffecting Infastructure Yfrom Location Z

Our Specialities

Rich IOC Extraction

LunarChain exposes and correlates a wide range of IOC types, ranging from IP Addresses, Threat Actor Groups to Locations and attack patterns. This allows for highly targeted threat intel lookups and profiling.

Deep Correlation of Intelligence

LunarChain performs in-house correlation across all intelligence data to uncover hidden patterns at scale. This amplifies signal quality and helps surface previously unknown threat activity and behavior.

Signal-to-Noise Optimization

LunarChain automatically filters irrelevant chatter and disinformation — ensuring analysts only see what matters. Our enrichment pipeline uses AI powered investigation, correlation and detection to surface real threats faster.

Agentic Threat Investigations

LunarChain allows querying of our intelligence graph with natural language using our custom GPT, with the goal of making threat intelligence open and simple to use to everyone.

Alerting

Real-time threat alerting on anomaly and threat detection against targets

Alerting Example

Alerting Capabilities

Automated Alerting

LunarChain supports the setup of automated alerting based on niche intelligence needs, served in realtime as intel is surfaced.

Alert Delivery

Receive realtime targeted alerts through platform notifications, email, messaging and customised reports.

Intelligent Filtering

Advanced algorithms filter out false positives and ensure you only receive actionable, high-confidence alerts.

Reports on Targets

We can deliver reports on targets of interest, as data surfaces on them.

LunarChain MCP Server

Model Context Protocol access to LunarChain's intelligence graph for agentic workflows

MCP Capabilities

Protocol-Native Access

Connect any MCP-compatible client to query and traverse LunarChain graph intelligence with structured tool calls.

Agentic Investigation

Enable multi-step agents to chain retrieval, follow-up graph exploration, and contextual enrichment in one workflow.

Live Intelligence Surface

Expose near real-time cyber, geopolitical, and military intelligence context through a single MCP endpoint.

Graph-Correlated Context

Return rich entities and relationships across IOCs, actors, infrastructure, campaigns, locations, and attack patterns.

Integrate with LunarChain via MCP

Open our API docs for MCP usage, setup, and test workflows.

Open API Docs

Contact Us

For specific intelligence needs or alerting capabilities

Email

[email protected]

General inquiries and support

Location

London, UK

Headquarters and main operations center

Send us a message