Security research across mobile platforms, product security, and applied AI
Orion Labs publishes technical research artifacts and methodologies designed to be useful to engineers and researchers—while remaining responsible about sensitive details.
Featured research
View allReproducing Citizen Lab and Lookout's 2016 Million Dollar Dissident infrastructure analysis with the 2026 connector stack: era-bound tool substitution, three previously-undisclosed NSO-attributed domains, and a V1 deployment 15 months earlier than the original disclosure documented.
A technical orientation to the Censys Platform as a threat intelligence primitive: scanning architecture, data model, historical data, the Threat Hunting Module, ASM, and CenQL.
How Orion Labs structures research work and what we publish (and what we don't).
Research areas
Mobile Platform Research
Internals analysis, vulnerability study, and patch research across iOS and Android. Published findings focus on technique and methodology.
Autonomous AI Research
Security and safety research in autonomous AI systems — agent architectures, capability boundaries, and emergent behavior in controlled environments.
AI-Assisted Analysis
Applying machine learning to binary analysis workflows, triage automation, and research productivity.
Anonymization Research
Privacy engineering, traffic obfuscation, and resiliency design — validated through controlled testing.
Mobile Agent Systems
Modular agent architectures and secure data handling patterns, explored in controlled research environments.
Critical Systems
Risk governance and assurance practices for high-assurance environments.