RayveLabs — open cyber atlas
// rayvelabs · open cyber atlas

One place to look up the open security data.

Paste an IP, domain, hash, or CVE — the atlas checks every major free feed at once and tells you what they say. No sign-up, no API keys, no install. For students, researchers, and anyone trying to understand what's going on out there.

🔎
IoC Lookup
Paste an IP, domain, URL, hash, or CVE. We check 10+ free feeds in one query and stitch the answer together.
URLhaus · ThreatFox · Feodo · SSLBL · Spamhaus · Tor · DShield · DataPlane · KEV · EPSS
Open lookup →
🛡
CVE Explorer
Type a CVE — see its full constellation: KEV status, EPSS score, ATT&CK mappings, CWE, related products, all on one page.
CISA KEV · EPSS · MITRE ATT&CK · CWE · NVD links
Open explorer →
🗺
Connections Map
A visual atlas of how the open security databases relate. Hover any node to see what flows in and out of it.
CVE hub · IoC hub · MITRE chain · compliance crosswalks
Open map →

Why this exists

The free, open security data already exists — CISA KEV, EPSS, MITRE ATT&CK, abuse.ch, Spamhaus, HaveIBeenPwned, NIST, the research datasets. The hard part is using it. Each feed has its own format, its own access pattern, its own quirks. Stitching them together for one question — "what do we know about this indicator?" — is most of the work in a real security investigation.

The Open Cyber Atlas does that stitching, once a day, for everyone:

It's a teaching tool first. Built for students at GWU and anyone else who wants to understand how the open cybersecurity ecosystem fits together. Free, no account, no tracking.