Move account signals into reviewed identity context

Username and account hits are only useful when source quality, false positives and case relevance are controlled.

Scroll

Product view

Turn username hits into reviewed identity context

AIF helps analysts collect account and username signals, preserve source notes, control false positives and connect identity context to the wider case graph.

Signals

Usernames, accounts, handles and profile references

Review

False-positive checks and source quality notes

Graph

Domains, actors, wallets, reports and related accounts

Output

Reviewed identity context with limitations

WORKWALL AND ONTOLOGY

Findings become graph context

Turn username hits into reviewed identity context

What OSINT teams get back

Cleaner signal handling

False-positive control

Connected identity graph

Reviewable output

Where account investigations overclaim

Username and account presence tools can return many hits, but a hit is not an identity finding. Without source notes and review, the workflow can create false confidence.

AIF keeps the review path visible. Analysts can collect signals through governed Skills, compare context, record uncertainty and connect only supported findings into the case.

01

ACCOUNTS

Signal collection

Gather approved account and username signals through governed Skills.

02

QUALITY

False-positive review

Keep uncertainty visible instead of converting hits into unsupported claims.

03

RELATIONS

Graph context

Connect accounts with domains, actors, wallets, reports and notes.

04

OUTPUT

Evidence notes

Produce reviewed findings that preserve source context and limitations.

Use cases

Account identity workflow

Use this pattern when account and username signals need controlled review before they influence an investigation.

OSINT

Account Identity Investigations

Username and account hits are only useful when source quality, false positives and case relevance are controlled.

Explore workflow

Industries

Account Identity Investigations

Capabilities

Signal collectionFalse-positive reviewGraph contextEvidence notes

Outputs

Evidence notes

Product view

Keep source notes attached to every identity finding

Collection, review, relation mapping and output can remain attached to the case so identity context stays understandable and defensible.

Collect

Approved account and username checks

Review

Source quality and false-positive notes

Connect

Supported relations to the wider case graph

Brief

Evidence notes and limitation context

CASE TO EVIDENCE FLOW

Every output remains attached to the case

Keep source notes attached to every identity finding

Trust model

Built for careful identity assessment

Identity workflows require explicit controls around source quality, uncertainty and downstream claims.

Source quality

Record where a hit came from and how it was checked.

  • Source notes
  • Signal origin
  • Review status

False-positive control

Avoid turning presence into attribution too quickly.

  • Confidence context
  • Reviewer checks
  • No overclaiming

Case relevance

Connect only supported findings into the investigation.

  • Workwall relations
  • Evidence notes
  • Open questions

Output discipline

Make limitations visible in reports and briefings.

  • Limits
  • Decision trail
  • Export context

Map an identity investigation workflow

Define which signals are allowed, how they are reviewed and what output is required.

Discuss Identity Workflow
View Use Cases