LIVE SOURCESSYNCING PLANS

What changed. Why it matters. What to do next.

Correlating public security data into an evidence-ranked operational view—before the rest of the noise.

PUBLIC FEED + CVEs FREEWORKFLOWS PROCOLLABORATION TEAMCompare access →
ANALYST STARTING POINT

Last 24 hours

Assembling the operational change window…

KNOWN EXPLOITED
ZERO-DAY REPORTS
PUBLIC POC
ACTOR CLAIMS
Ranking changed conditions and supporting evidence…
ACTOR SIGNALSUNVERIFIED

countries in current window

EXPLOITED CVEsVERIFIED

linked to ransomware use

OPEN SIGNALSREPORTED

active publishers

SIGNAL INDEXCOMPOSITE

CALCULATING POSTURE

EXPLOITABILITY WATCH

Zero-day & emerging vulnerability queue

⌁ Advanced PRO
RECENT RECORDS
KNOWN EXPLOITED
PUBLIC EXPLOIT / POC
HIGH EPSS

Evidence-ranked with NVD, GitHub advisories, FIRST EPSS, and CISA KEV. “Zero-day” appears only when explicitly reported by a source.

Correlating recent disclosures and exploit evidence…
CVSS measures severity. EPSS estimates exploitation probability. KEV confirms observed exploitation.Scoring standard →
GLOBAL RADAR

Adversary activity

SCORE 8910PINNED
PING = SIGNAL PRESSURE · SELECT A COUNTRY TO INSPECT OR PIN
WATCHTOWER

Your monitored world

LOCAL TARGETS ARE FREESync watchlist PRO

Monitor the part of the world you care about.

Pin countries from the radar or add vendors, actors, CVEs, and keywords. Watchtower keeps the relevant public record together in this browser.

PINNED COUNTRIES0
PRO

Saved dashboards

Retain an investigation view, filters, and evidence context across sessions.

Unlock saved views →
PRO

Alert routes

Route watchlist changes to email or Discord when signal conditions move.

Configure alerts →
PRO

Threat timelines

Reconstruct disclosure, exploitation, KEV, scanning, and advisory changes.

Open history →
TEAM

Shared ops + exports

Shared dashboards and watchlists, member roles, CSV/JSON export, and API access.

Inspect Team access →