Get Started with AMLTRIX

What is AMLTRIX?

AMLTRIX is an open knowledge base of adversarial tactics, techniques, and indicators, created from the collective insights of the AML / CFT community.
Instead of static rule lists, AMLTRIX focuses on how criminals operate across the entire illicit-finance lifecycle.

Need a guided tour?

• AMLTRIX Philosophy & Design GPT – explains the model, taxonomy, and kill-chain concepts.
• AMLTRIX Typology Navigator GPT – helps map real behaviours to tactics, techniques, indicators, and mitigations.

(Tip: on any framework page you can use the search icon (top-right corner) to jump directly to a tactic, technique, or term.)

Practical use-case examples

Wondering how AMLTRIX is applied? See the dedicated page:

Use-Cases: https://framework.amltrix.com/use-cases

You’ll find short articles that describe AMLTRIX in action, including:

• Investigation & Case Analysis – tracing behaviours through kill-chain stages.
• Control-Gap Mapping – heat-mapping existing rules to techniques.
• Risk Assessment & Scoring – aligning product, customer, and channel risks to tactics.
• Red/Blue-Team Simulation – using Navigator layers for scenario planning and coverage testing.
• Data Labelling & ML Training – tagging transactions or alerts with AMLTRIX IDs.
• Cross-Institutional Sharing – exchanging structured typologies with peers or regulators.

Key concepts

1. Tactics – the why (e.g., Placement, Asset Protection).
2. Techniques – the how (e.g., Structuring deposits, Shell companies).
3. Indicators – observable red flags that reveal techniques.
4. Mitigations – defensive measures linked to techniques.

Supporting contexts: Actors • Services & Products • Value Instruments.

Mapping these elements helps practitioners spot vulnerabilities faster and design targeted controls.

How to use AMLTRIX

• Investigate suspicious activity – follow indicators to likely techniques.
• Enrich threat intelligence – apply a common language across data sources.
• Map existing rules and other mitigative measures – align controls to known adversary methods.
• Staff training – give analysts a structured view of emerging threats.

How not to use AMLTRIX

AMLTRIX is not a checklist, legal advice, or an exhaustive catalogue.
Always apply a risk-based approach tailored to your institution’s context.

Why risk-based thinking matters

1. Identify your highest-impact threats.
2. Select the AMLTRIX tactics / techniques that apply.
3. Scale monitoring and KYC controls proportionally.

AMLTRIX is modular so you can focus on what truly matters.

Community & Next Steps

• Discord: https://discord.gg/z7bB37Pu7j
• LinkedIn Group: https://www.linkedin.com/groups/10101100/
• LinkedIn Company Page: https://www.linkedin.com/company/amltrix/
• Contribution form: https://framework.amltrix.com/contribution/create
• Methodology details: https://framework.amltrix.com/design-methodology

We welcome new techniques, indicators, case studies, or simple typo fixes—every contribution helps keep AMLTRIX current and practical.

Data exports

Need structured data? CSV, STIX, Excel, Navigator-layer, and Markdown files are available in the public repo:

https://github.com/Amlyze/amltrix-data

Download, integrate, or fork the repo to fit your workflow.

By combining community knowledge with a structured adversarial model, AMLTRIX empowers AML practitioners to understand how and why financial crime happens—and to build better, more adaptive defenses.