We help organisations understand, assess, and address human behavioural risk. The threats that don't show up on your SIEM.
"We apply the same analytical rigour used to track nation-state hackers to the human side of risk."
Insider threats don't come out of nowhere, there are patterns before the incident. Social engineering works because it exploits predictable human responses. Coercion and manipulation follow signatures, just like malware.
We make these patterns visible. Once you can see them, you can do something about them.
This isn't surveillance. It's not profiling individuals. It's understanding how harmful behaviours operate, the tactics, the techniques and the behaviours so you can recognise them, prevent them, and respond to them.
We work across multiple domains, but every engagement starts with the same question: what's the human behaviour you're trying to understand? Not who are you trying to profile.
Structured intelligence on human behavioural threats. Indicator libraries, threat assessments, STIX-formatted feeds. Intelligence you can operationalise, not a report that sits on a shelf.
Retainers, strategic guidance, second opinions. A thinking partner with deep expertise in human behavioural risk. Sounding board access when situations arise.
Tabletop exercises for human threats. Training for security teams, HR, legal, frontline staff. Capability building so your team can apply these concepts themselves.
Human factors analysis for workplace investigations. Expert reports for legal proceedings. Litigation support and testimony. Rigorous analysis that stands up to scrutiny.
Human factors security assessments. Insider threat program maturity reviews. Security culture analysis. A clear picture of your posture and what to do about it.
SAFE Platform deployment, integration, and operational support. Getting intelligence infrastructure into production within your organisation.
Cybersecurity has MITRE ATT&CK. Interpersonal harm had nothing comparable. So we're building the infrastructure — open-source frameworks, intelligence platforms, and the community to bridge the gap.
The first structured knowledge base mapping how technology is weaponised in interpersonal harm. 7 tactics. 74 techniques. Think MITRE ATT&CK for tech-facilitated abuse. Open source, evidence-based, practitioner-focused.
Explore the MatrixLongitudinal pattern detection across contested knowledge domains. Independent analytical lenses, constitutional governance, and structured intelligence production — configurable for any domain where patterns persist.
Learn moreThe first deployment of the Engine. Applying threat intelligence methodology — TTPs, structured analysis, constitutional AI — to patterns of coercion, abuse, and exploitation. Built for DV practitioners, government analysts, and the legal sector.
Explore SAFEWomen doing unprecedented things in cyber, security, and intelligence and the stories that got them there. Not empowerment speeches, cupcakes or panels about leaning in. Just the work, and how they got there.
A hub for connecting cybersecurity speakers with non-cyber stages. Partnering with Industry Organisations to put diverse voices in rooms that need to hear them.
The SAFE TFA Matrix documents the tactics and techniques used in technology-facilitated abuse. Think of it as MITRE ATT&CK for Technology-facilitated Abuse (TFA) — a structured knowledge base that helps practitioners identify, classify, and respond to tech-enabled abuse patterns.
Open source. Evidence-based. Practitioner-focused.
Stalkerware, GPS trackers, account monitoring, smart home surveillance
Password theft, account takeover, device lockout, 2FA interception
Threats, doxxing, swatting, coordinated pile-ons, contact bombing
Gaslighting, NCII, deepfakes, fake evidence, reputation attacks
Blocking contacts, controlling social media, intercepting communications
Financial lockout, transaction monitoring, crypto fraud, identity theft
Location-based assault, smart lock manipulation, vehicle sabotage
Open-source frameworks and structured resources for practitioners and researchers.
Slide decks, recordings, and materials from conference presentations and training sessions.
Zero Day Women — stories of women doing unprecedented things in cyber, security, and intelligence. From Dumb Ways To Get Hacked.
Published analysis, articles, and research contributions on human factors security and interpersonal harm.
Whether you're dealing with insider threat, security culture gaps, or human factors risk — or you're in the DV sector and want to talk about SAFE — we'd like to hear from you.
If you are in immediate danger, call 000. For support: 1800RESPECT · Lifeline 13 11 14. Your safety matters — reach out for help.