Forensic Analysis
Deep technical analysis of compromised systems, malware artefacts, network traffic, and digital evidence. Output formatted for court admissibility under EU evidence frameworks.
identiqa Intelligence is our investigative product line for law enforcement agencies, government bodies, and qualified security teams. Powered by Black Iris AI, with capabilities spanning forensic analysis, threat intelligence, attribution, and strategic briefings.
Most of identiqa is built around defense — keeping attacks from reaching customers. ProtectionGrid is that side of our business. Identiqa Intelligence is the other side: what happens when something has already occurred and the question shifts from "how do we stop this?" to "who did it, how, and what comes next?"
Our investigative tools are built for forensic analysts, intelligence officers, incident response teams, and policy advisors — operating under European jurisdiction, with court-admissible evidence handling and chain-of-custody documentation built in from the start.
Brief outlines below. Full technical capabilities, deployment options, and case studies are shared under NDA with verified prospects.
Deep technical analysis of compromised systems, malware artefacts, network traffic, and digital evidence. Output formatted for court admissibility under EU evidence frameworks.
Curated, contextualized threat feeds focused on European critical infrastructure, government targets, and active campaigns. Strategic, operational, and tactical levels available.
Active incident support — on-call assistance during active intrusions, war-room coordination, immediate containment guidance, and structured handover to long-term forensic teams.
Technical and behavioural analysis to attribute attacks to specific threat actors, with confidence-scored findings, supporting evidence chains, and correlation across past campaigns.
Continuous monitoring of dark-web marketplaces, leak sites, and threat actor channels for mentions of customer assets, credentials, or planned operations. Reporting tailored to investigative requirements.
Periodic intelligence briefings for executive and ministerial audiences — translating technical threat data into strategic decisions, policy recommendations, and resource priorities.
Identiqa Intelligence isn't a self-service product. We engage selectively, under NDA, with verified institutional contacts. Below: who fits, and who doesn't.
If your organization fits the criteria above, the form opposite is the right starting point. Use a verifiable institutional email address (e.g., a domain associated with your agency or ministry). Anonymous inquiries are not processed.
We typically respond within 3 business days with a brief verification step, followed by an NDA and a substantive technical conversation. There is no public sales funnel for Intelligence — every engagement starts with a real conversation.
For verified law enforcement, government, and qualified institutional contacts only.