The Institute for Intelligence and Special Operations, otherwise known as the Mossad, has been appointed by the State of Israel to collect information, analyze intelligence, and perform special covert operations beyond its borders.
The form on this website is for responding to website related topics and for matters you think might affect state security.
If you feel you have information that could be useful to ISIS, please use the form on this page. We undertake to protect the information and to maintain the sender's anonymity.
ISIS does not handle information pertaining to domestic law enforcement.
This website is one of those for which fake Digital Certificates were produced by an allegedly Iranian hacker or the Iranian government see DigiNotar Damage Disclosure
- Press inquiries
ISIS does not have a press officer. All media applications are handled by the Prime Minister's Bureau.
- General inquiries
Social Networking publicity
Financial Donation methods
Not Applicable - Israeli taxpayer funded
Currently accepting submissions of whistleblower leaks / tip offs ?
Leak Submission Encryption
Digital Certificate fingerprints published on their website:
Since this website is one of those for which fake Digital Certificates were produced by an allegedly Iranian hacker or the Iranian government (see DigiNotar Damage Disclosure), here are the current Digital Certificate cryptographic hash fingerprints:
Subject: CN=www.mossad.gov.il, OU=Tehila, O=Ministry Of Finance, L=Jerusalem, ST=Israel, C=IL
Issuer: CN=ComSign Server CA, O=ComSign Ltd., C=IL
Serial Number: 1F85 242D 112E A9D6 633F 1E95 82B6 4F14
Valid Until: 04-Nov-2012 07:00:13 GMT
Qualsys SSLLabs SSL Server Test rating:
Overall rating: D 
Protocol Support: 55
Key Exchange: 40
Cipher Strength: 50
The Israeli Ministry of Finance / Mossad webserver is misconfigured to still allow the deprecated SSL ver 2.0 protocol and weak 40bit and 56bit cipher suites. Although most modern web browsers will not use these, there is a chance of a Man-In-the-Middle cipher suite downgrade attack, especially at, for example, public WiFi hotspots, which means that the "secure" session encryption could be broken in real time.
Given that traffic to and from this website must be of intense interest to neighbouring and global sigint intelligence agencies, who will try to capture and retain such internet data into the future, the RSA / 1024 bit private keys may soon be vulnerable to massively parallel computer systems - they should really upgrade to 2048 or 4096 bit private keys.
PGP Public Encryption Key
None published on their website
TOR Hidden Service
Domain Name Resilience
Domain Name Registrar
Multiple Domain Name Service providers, in different legal jurisdictions ?
Name server list
Where they are located
Israeli Government Network, Ministry of Finance
Alternate Domain Name aliases
Actual Physical Mirrors of the website:
Content available via BitTorrent etc P2P etc.