Home Platform Security About Contact

A complete system for
digital investigation intelligence.

Vistiga provides the infrastructure for law enforcement to conduct breach-based investigations at scale - from case creation to finding review, with full audit compliance at every step.

01
Cases

Classified investigations with team access

02
Subjects

Persons of interest within a case

03
Identifiers

Emails, usernames, IPs, phones, domains

04
Findings

Breach data linked back to subjects

Case Management

Structured case organization.

Each investigation is contained within a case that carries its own classification level, reference number, and access permissions. Cases can be designated as open, restricted, or confidential - controlling visibility across your organization.

  • Classification Levels
    Open, Restricted, and Confidential access tiers.
  • Team Roles
    Lead, Member, and Viewer roles with scoped permissions per case.
  • External References
    Link cases to external reference numbers from your existing systems.
Case Structure
Operation Meridian
Ref: K-2025-1847 · Restricted
Subject A
3 identifiers
Subject B
2 identifiers
Breach Intelligence

Scan. Deduplicate. Surface.

Vistiga's scanning engine queries multiple breach databases for each registered identifier. Results are normalized into a consistent format, deduplicated using content hashes, and linked to the originating case and subject.

  • Multi-Source Queries
    Each identifier is checked across all available breach data providers simultaneously.
  • Hash-Based Deduplication
    Content hashes ensure the same finding is never presented twice, even across repeat scans.
  • Source Attribution
    Every finding includes its breach name, date, and the data classes that were exposed.
Finding Example
Identifier: [email protected]
password username ip_address
Source: ExampleBreach (2023) · 3 data classes
Review
Actionable
Dismiss
Monitoring

Persistent, automated rescanning.

Identifiers aren't scanned once and forgotten. Vistiga's queue system automatically rescans active identifiers on a configurable interval - daily by default. New breach data that enters the system between scans is surfaced on the next cycle.

  • Configurable Scan Intervals
    Default daily rescanning with per-identifier override capability.
  • Automatic Alerting
    New findings trigger in-app and email notifications to all case members.
  • Queue Management
    Priority-based queue with automatic cleanup of completed and expired items.
Scan Timeline
Initial scan
7 findings discovered
Day 2 rescan
No new findings
Day 5 rescan
2 new findings - alert sent
Audit & Compliance

Every action, recorded.

Vistiga maintains an immutable, append-only audit log of every meaningful action taken in the system. Logs are filterable by user, case, action type, and time range - and are designed to withstand legal scrutiny.

  • Full Attribution
    User identity (including eID-verified identity where enabled), timestamp, IP address, and case context on every entry.
  • Append-Only Architecture
    Audit records cannot be modified or deleted - even by administrators.
Audit Log Entry
time  2025-05-30 14:23:07
action  reviewed_finding
case  K-2025-1847
target  finding:284
ip    10.0.12.45
detail  status: 0 → 2 (actionable)

Seven identifier types, one unified workflow.

Email

Personal and organizational email addresses

Username

Handles across platforms and services

IP Address

IPv4 and IPv6 addresses

Phone

Phone numbers in any format

Name

Full names and known aliases

Domain

Web domains and subdomains

Other

Custom identifier types as needed

Request new type

See the platform in action.

Request a guided walkthrough tailored to your agency's investigative workflows.

Request Access