Case Details
Subject Selectors
Intelligence Modules
Person
Digital
Breach
Phone
Domain
Geolocation
Media
Archive
Companies
AI Report
AI Report Engine
Export
Identity Resolution 7 Records
full_name
aliasesj.doe.93 · jd_writes · jdoe_official
dob
addressStafford, VA (current)
address_history4 records on file
employer
confidence97.3% — Pipl/Intelius match
Breach Exposure 4 Breaches
LinkedIn 20212021Email · Phone · Employment
Adobe 20132013Email · Password hash
Collection #12019Email · Password (plain)
Canva 20192019Name · Email
Social Profiles 11 Found
Twitter/X
LinkedIn
Reddit
GitHub
Instagram
Facebook
TikTok
Pinterest
Telegram
Discord
Flickr
Snapchat
Risk Flags 3 High
HighPassword exposed in plain text in Collection #1 breach. Credential stuffing risk.
HighGPS coordinates embedded in 2 Instagram images — location pattern analysis recommended.
High3 domains registered via privacy proxy — beneficial ownership concealed.
MedPhone number linked to VoIP provider — potentially non-traceable.
LowAccount creation timestamps cluster between 02:00–04:00 local — atypical activity pattern.
AI Intelligence Report Claude Sonnet
Generated 5.1s · 8 modules
Subject Assessment. Cross-referencing seven identity records, the subject operates under at least three confirmed aliases across 11 active social media platforms. The highest-confidence identity match — established through Trestle Real Contact and Pipl correlation at 97.3% — places the primary residence in Stafford, Virginia, with address history spanning the Southeast United States from 2017 to present.
⚠ Critical finding: Password credentials were exposed in plain text in the Collection #1 breach, representing an active credential-stuffing risk across all linked accounts. DeHashed confirms two additional exposures with plaintext passwords. Recommend immediate cross-reference of exposed credentials against the subject's active email and social platform access.
Digital Footprint. The subject maintains a consistent username pattern — jdoe.93 / jd_writes — across 9 of 11 discovered platforms, enabling high-confidence attribution. Two dormant accounts (pre-2019) contain archived content that may be relevant to the timeline. GPS metadata embedded in two Instagram posts geocodes to Coral Gables, Florida, which correlates with an associate address cluster and a business registration filed under the subject's middle name.
Recommended Next Steps. (1) Subpoena carrier records for linked phone number — Twilio Identity Match flags a SIM swap in January. (2) Conduct shadow analysis on the two geotagged images to establish time-of-day and verify location. (3) Identify beneficial owner of three privacy-proxy domains via registrar legal process. (4) Pull OpenCorporates filing history for the Miami business entity and cross-reference officers against known associate list.
⚠ Critical finding: Password credentials were exposed in plain text in the Collection #1 breach, representing an active credential-stuffing risk across all linked accounts. DeHashed confirms two additional exposures with plaintext passwords. Recommend immediate cross-reference of exposed credentials against the subject's active email and social platform access.
Digital Footprint. The subject maintains a consistent username pattern — jdoe.93 / jd_writes — across 9 of 11 discovered platforms, enabling high-confidence attribution. Two dormant accounts (pre-2019) contain archived content that may be relevant to the timeline. GPS metadata embedded in two Instagram posts geocodes to Coral Gables, Florida, which correlates with an associate address cluster and a business registration filed under the subject's middle name.
Recommended Next Steps. (1) Subpoena carrier records for linked phone number — Twilio Identity Match flags a SIM swap in January. (2) Conduct shadow analysis on the two geotagged images to establish time-of-day and verify location. (3) Identify beneficial owner of three privacy-proxy domains via registrar legal process. (4) Pull OpenCorporates filing history for the Miami business entity and cross-reference officers against known associate list.
Street View Google Maps
Select a location
to preview Street View
to preview Street View
Trace
INV-0041 Full Profile
AI Report
INV-0041 Intelligence Summary
Archive
INV-0041 Social Evidence
Trace
INV-0039 Domain Network
Export
INV-0039 Report.pdf
AI Report
INV-0037 Risk Assessment
Archive
INV-0037 Web Pages
Export
INV-0034 Data.json
Trace
INV-0034 Phone Network
Export
System Health
Status—
Uptime—
Node—
Env configured—
Audit log entries—
Recent error rate—
Accrued cost—
Active Probes
Connect to load probes…
Click a probe to run a live connectivity test against that service.
API Key Configuration
Connect to load…
Recent Errors
Connect to load…
Claude AI Ops Chat
👋 I'm your Tracevoyant ops assistant. Ask me to diagnose errors, explain system state, or write a fix. I'm pre-loaded with your current health data and recent errors.