A real-time global intelligence dashboard — the open-source Palantir alternative that you host and own. Aggregates live flight, maritime, CCTV, seismic, wildfire, cyber and conflict data onto a GPU-accelerated 3D globe, with a browser-based recon toolkit and a sovereign RAG investigation agent.
- Sovereign by default. The AI investigation engine runs on a local LLM (Ollama) and a self-hosted SearXNG — no cloud is contacted unless you explicitly opt in. Fonts are self-hosted; DNS recon defaults to a non-GAFAM resolver; there is no analytics or tracking.
- Passive by default. Only the active-scan route (
/api/scanner) and/api/osint/whoisemit traffic to a third-party target. Every other feed reads public sources server-side. Nothing acts autonomously. - Augment the investigator, don't replace them. Results are sourced, corroborated and labelled indicative — never a single-source claim presented as fact.
Skopia is designed to be self-hosted. There is no shared public instance; the value you get is the code you run.
| Domain | Data Points | Sources |
|---|---|---|
| Aviation | Commercial, Private, Military, Jets | OpenSky / ADS-B |
| Maritime | Ports, chokepoints, live AIS, SAR "dark vessels", OFAC-SDN match | aisstream, Global Fishing Watch, OpenSanctions |
| CCTV | Public traffic/city cameras | TfL, WSDOT, Caltrans, NYC DOT + more |
| Seismic | Real-time M2.5+ | USGS, ETH Zürich (SED) |
| Fires / Hazards | Active hotspots, multi-hazard alerts | NASA FIRMS, GDACS, EONET |
| Space | Solar weather, satellites | NOAA SWPC, Celestrak |
| Cyber | CVE threats, recon toolkit | NVD, abuse.ch, self-hosted scanner |
| Conflict | Active zones, GPS-jamming, masked zones | ADS-B derivation + SAR correlation |
| Sanctions / Crypto | Person/org/vessel SDN search, BTC/ETH tracing | OpenSanctions (US OFAC SDN mirror) |
| News / Telegram | Curated live streams + public-channel OSINT | broadcaster streams, t.me/s/<channel> |
DNS-over-HTTPS lookup · WHOIS (auto OFAC-SDN cross-check) · SSL/TLS inspection · reverse DNS · subdomain & tech fingerprint · IP intelligence · CVE lookup · rate-limited, SSRF-guarded active scan.
git clone https://github.com/NOLAM-CH/skopia.git
cd skopia
npm install
cp .env.example .env.local # optional — all core feeds are keyless
npm run devOpen http://localhost:3000.
git clone https://github.com/NOLAM-CH/skopia.git
cd skopia
cp .env.example .env # optional
docker compose up -d --buildThe image is a multi-stage node:22-alpine standalone build (non-root). Set OSIRIS_PORT in .env to change the published host port (the container always listens on 3000).
Deployment target: Docker / a long-running Node server. Some routes run well past 30s (e.g.
dark-vesselsfans out over several SAR zones), so a serverless host with short function timeouts (default Vercel) is not supported without reworking those routes.
Skopia works with zero API keys — every core feed uses public, keyless sources. Copy .env.example and set only what you need. Notable variables:
| Variable | Purpose |
|---|---|
SEARXNG_URL |
Self-hosted SearXNG for the RAG (default http://localhost:8888) |
AGENT_ENDPOINTS |
Local LLM endpoint chain `host |
AI_BASE_URL / AI_MODEL |
Optional opt-in cloud/OpenAI-compatible provider for the analyst routes |
DOH_RESOLVER |
DNS-over-HTTPS resolver for recon (default Quad9, non-GAFAM) |
SCANNER_URL / SCANNER_KEY |
Active-scan backend (RECON returns 503 without it) |
GFW_API_TOKEN |
Global Fishing Watch SAR (free, non-commercial) — dark-vessel layer |
AIS_API_KEY |
aisstream.io — live maritime AIS |
.env* files are gitignored — never commit secrets.
| Layer | Technology |
|---|---|
| Framework | Next.js 16 (App Router) |
| Language | TypeScript 5 |
| Map | MapLibre GL JS (WebGL) |
| Styling | Custom CSS + self-hosted fonts (Inter, JetBrains Mono — OFL) |
| Deployment | Docker (standalone Node server) |
Skopia queries public third-party APIs at runtime. Feeds run server-side (the server's IP is exposed, not the visitor's), except embedded video (CCTV / news) which the browser loads directly from the provider. Several sources carry their own terms — notably Global Fishing Watch (non-commercial + attribution) and ip-api.com (free tier, non-commercial). Review each source's ToS before any commercial deployment. See NOTICE.
Skopia is an OSINT/recon tool for defensive, educational and authorized use only. Do not scan or probe infrastructure you don't own or aren't authorized to monitor. See SECURITY.md for the usage policy and vulnerability-reporting channel.
Skopia's additions are licensed under AGPL-3.0-or-later (LICENSE). Skopia is a fork of simplifaisoul/osiris (MIT); that notice is preserved in LICENSE-MIT. See NOTICE for the full attribution and bundled-asset licenses.
A NOLAM project · sovereign, self-hosted, yours.