Skip to content

NOLAM-CH/skopia

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Skopia

Skopia

Sovereign Open-Source Intelligence Platform

License: AGPL v3 Next.js TypeScript MapLibre

A real-time global intelligence dashboard — the open-source Palantir alternative that you host and own. Aggregates live flight, maritime, CCTV, seismic, wildfire, cyber and conflict data onto a GPU-accelerated 3D globe, with a browser-based recon toolkit and a sovereign RAG investigation agent.


Philosophy

  • Sovereign by default. The AI investigation engine runs on a local LLM (Ollama) and a self-hosted SearXNG — no cloud is contacted unless you explicitly opt in. Fonts are self-hosted; DNS recon defaults to a non-GAFAM resolver; there is no analytics or tracking.
  • Passive by default. Only the active-scan route (/api/scanner) and /api/osint/whois emit traffic to a third-party target. Every other feed reads public sources server-side. Nothing acts autonomously.
  • Augment the investigator, don't replace them. Results are sourced, corroborated and labelled indicative — never a single-source claim presented as fact.

Skopia is designed to be self-hosted. There is no shared public instance; the value you get is the code you run.


Capabilities

Domain Data Points Sources
Aviation Commercial, Private, Military, Jets OpenSky / ADS-B
Maritime Ports, chokepoints, live AIS, SAR "dark vessels", OFAC-SDN match aisstream, Global Fishing Watch, OpenSanctions
CCTV Public traffic/city cameras TfL, WSDOT, Caltrans, NYC DOT + more
Seismic Real-time M2.5+ USGS, ETH Zürich (SED)
Fires / Hazards Active hotspots, multi-hazard alerts NASA FIRMS, GDACS, EONET
Space Solar weather, satellites NOAA SWPC, Celestrak
Cyber CVE threats, recon toolkit NVD, abuse.ch, self-hosted scanner
Conflict Active zones, GPS-jamming, masked zones ADS-B derivation + SAR correlation
Sanctions / Crypto Person/org/vessel SDN search, BTC/ETH tracing OpenSanctions (US OFAC SDN mirror)
News / Telegram Curated live streams + public-channel OSINT broadcaster streams, t.me/s/<channel>

Recon toolkit (browser)

DNS-over-HTTPS lookup · WHOIS (auto OFAC-SDN cross-check) · SSL/TLS inspection · reverse DNS · subdomain & tech fingerprint · IP intelligence · CVE lookup · rate-limited, SSRF-guarded active scan.


Quick start

git clone https://github.com/NOLAM-CH/skopia.git
cd skopia
npm install
cp .env.example .env.local   # optional — all core feeds are keyless
npm run dev

Open http://localhost:3000.

Docker / self-hosting

git clone https://github.com/NOLAM-CH/skopia.git
cd skopia
cp .env.example .env         # optional
docker compose up -d --build

The image is a multi-stage node:22-alpine standalone build (non-root). Set OSIRIS_PORT in .env to change the published host port (the container always listens on 3000).

Deployment target: Docker / a long-running Node server. Some routes run well past 30s (e.g. dark-vessels fans out over several SAR zones), so a serverless host with short function timeouts (default Vercel) is not supported without reworking those routes.

Environment

Skopia works with zero API keys — every core feed uses public, keyless sources. Copy .env.example and set only what you need. Notable variables:

Variable Purpose
SEARXNG_URL Self-hosted SearXNG for the RAG (default http://localhost:8888)
AGENT_ENDPOINTS Local LLM endpoint chain `host
AI_BASE_URL / AI_MODEL Optional opt-in cloud/OpenAI-compatible provider for the analyst routes
DOH_RESOLVER DNS-over-HTTPS resolver for recon (default Quad9, non-GAFAM)
SCANNER_URL / SCANNER_KEY Active-scan backend (RECON returns 503 without it)
GFW_API_TOKEN Global Fishing Watch SAR (free, non-commercial) — dark-vessel layer
AIS_API_KEY aisstream.io — live maritime AIS

.env* files are gitignored — never commit secrets.


Tech stack

Layer Technology
Framework Next.js 16 (App Router)
Language TypeScript 5
Map MapLibre GL JS (WebGL)
Styling Custom CSS + self-hosted fonts (Inter, JetBrains Mono — OFL)
Deployment Docker (standalone Node server)

Sources & third-party dependencies

Skopia queries public third-party APIs at runtime. Feeds run server-side (the server's IP is exposed, not the visitor's), except embedded video (CCTV / news) which the browser loads directly from the provider. Several sources carry their own terms — notably Global Fishing Watch (non-commercial + attribution) and ip-api.com (free tier, non-commercial). Review each source's ToS before any commercial deployment. See NOTICE.


Security & responsible use

Skopia is an OSINT/recon tool for defensive, educational and authorized use only. Do not scan or probe infrastructure you don't own or aren't authorized to monitor. See SECURITY.md for the usage policy and vulnerability-reporting channel.


License & attribution

Skopia's additions are licensed under AGPL-3.0-or-later (LICENSE). Skopia is a fork of simplifaisoul/osiris (MIT); that notice is preserved in LICENSE-MIT. See NOTICE for the full attribution and bundled-asset licenses.

A NOLAM project · sovereign, self-hosted, yours.

About

The open-source Palantir you host and own — real-time flight, maritime, CCTV, seismic, cyber & conflict intelligence on a 3D globe, plus a browser recon toolkit and a local-first RAG investigation agent. Sovereign by default, cloud opt-in.

Topics

Resources

License

AGPL-3.0, Unknown licenses found

Licenses found

AGPL-3.0
LICENSE
Unknown
LICENSE-MIT

Contributing

Security policy

Stars

1 star

Watchers

0 watching

Forks

Releases

No releases published

Packages

 
 
 

Contributors