Surface
Research archive
Research archive
Research, methodology, and risk reasoning.
The research archive holds methodology notes, risk analysis, sanctions explainers, and typology work that support technical evaluation and operator education.
Research content is separate from case briefs because thought leadership and redacted client proof convert differently and should not compete inside one mixed archive.
How to use the archive
01
Read for reasoning
Use research pieces to understand the logic model, investigative method, and risk framing behind the public thesis.
02
Match the audience
Note whether the artifact is built for counsel, compliance, executives, or operators before carrying the pattern into your own workflow.
03
Escalate when the public layer ends
Once the archive answers the “how,” move to intake if you need matter-specific analysis, reporting, or deployment support.
Featured research brief
How blockchain exposure propagates across counterparties
March 2026
This brief explains how financial risk expands across counterparties once funds move through bridges, mixers, OTC desks, and omnibus wallets. It frames exposure as a graph problem, not a checklist problem.
Type
Methodology Brief
Best fit
Compliance teams
How blockchain exposure propagates across counterparties
Learn why direct interaction is only the tip of the iceberg. An exploration of multi-hop risk flow, entity resolution clustering, and why static blacklists fail against sophisticated layering.
Why it matters
This brief explains how financial risk expands across counterparties once funds move through bridges, mixers, OTC desks, and omnibus wallets. It frames exposure as a graph problem, not a checklist problem.
Understanding wallet behavior beyond simple blacklists
An analysis of behavioral heuristics that reveal high-risk wallets before they are officially designated by OFAC or added to commercial blacklists.
Why it matters
This note focuses on behavior-first risk signals: transaction cadence, routing irregularity, gas usage, service affinity, and liquidation timing. The goal is earlier detection before formal list placement.
Stablecoin treasury risk: what operators miss
A deep dive into the hidden operational risks facing fiat-backed stablecoin issuers when managing massive redemption flows and inbound centralized liquidity.
Why it matters
The brief maps where treasury operators lose visibility: omnibus settlement flows, delayed attribution, redemption concentration, and recycled liquidity from high-risk venues.
From trace to report: building evidence-grade blockchain intelligence
The standard playbook for transitioning from an exploratory visual graph trace to a rigorous, court-accepted forensic report that holds up to cross-examination.
Why it matters
This methodology brief translates exploratory analyst work into structured evidence: timelines, exhibits, narrative framing, and explainable attribution. It is meant for teams that need output quality, not just discovery speed.
Why indirect exposure matters in digital asset operations
Exploring the regulatory shift from strict liability on direct interactions towards a holistic "network proximity" standard for digital asset compliance programs.
Why it matters
This explainer clarifies why indirect exposure is now a board-level issue. It breaks down how sanctioned value can propagate through legitimate-looking venues and where compliance teams need evidence, not assumption.
Q4 2025 Fraud Typology Report: The Industrialization of Pig Butchering
An exhaustive block-by-block analysis of the preferred routing mechanisms, mixers, and over-the-counter broker networks used by Southeast Asian scam syndicates.
Why it matters
The typology report documents how organized scam networks operationalize wallet rotation, regional broker relationships, and laundering corridors. It is designed for teams responding to active fraud or building detection rules.