diff --git a/app.py b/app.py
index 373b368..b2b0ad4 100644
--- a/app.py
+++ b/app.py
@@ -39,6 +39,7 @@ from utils.constants import (
     MAX_VESSEL_AGE_SECONDS,
     MAX_DSC_MESSAGE_AGE_SECONDS,
     MAX_DEAUTH_ALERTS_AGE_SECONDS,
+    MAX_GSM_AGE_SECONDS,
     QUEUE_MAX_SIZE,
 )
 import logging
@@ -105,7 +106,7 @@ def inject_offline_settings():
             'enabled': get_setting('offline.enabled', False),
             'assets_source': get_setting('offline.assets_source', 'cdn'),
             'fonts_source': get_setting('offline.fonts_source', 'cdn'),
-            'tile_provider': get_setting('offline.tile_provider', 'cartodb_dark_cyan'),
+            'tile_provider': get_setting('offline.tile_provider', 'cartodb_dark_cyan'),
             'tile_server_url': get_setting('offline.tile_server_url', '')
         }
     }
@@ -181,6 +182,15 @@ deauth_detector = None
 deauth_detector_queue = queue.Queue(maxsize=QUEUE_MAX_SIZE)
 deauth_detector_lock = threading.Lock()
 
+# GSM Spy
+gsm_spy_process = None
+gsm_spy_monitor_process = None  # For grgsm_livemon when monitoring specific tower
+gsm_spy_queue = queue.Queue(maxsize=QUEUE_MAX_SIZE)
+gsm_spy_lock = threading.Lock()
+gsm_spy_active_device = None
+gsm_spy_selected_arfcn = None
+gsm_spy_region = 'Americas'  # Default band
+
 # ============================================
 # GLOBAL STATE DICTIONARIES
 # ============================================
@@ -213,6 +223,16 @@ dsc_messages = DataStore(max_age_seconds=MAX_DSC_MESSAGE_AGE_SECONDS, name='dsc_
 # Deauth alerts - using DataStore for automatic cleanup
 deauth_alerts = DataStore(max_age_seconds=MAX_DEAUTH_ALERTS_AGE_SECONDS, name='deauth_alerts')
 
+# GSM Spy data stores
+gsm_spy_towers = DataStore(
+    max_age_seconds=MAX_GSM_AGE_SECONDS,
+    name='gsm_spy_towers'
+)
+gsm_spy_devices = DataStore(
+    max_age_seconds=MAX_GSM_AGE_SECONDS,
+    name='gsm_spy_devices'
+)
+
 # Satellite state
 satellite_passes = []  # Predicted satellite passes (not auto-cleaned, calculated)
 
@@ -225,6 +245,8 @@ cleanup_manager.register(adsb_aircraft)
 cleanup_manager.register(ais_vessels)
 cleanup_manager.register(dsc_messages)
 cleanup_manager.register(deauth_alerts)
+cleanup_manager.register(gsm_spy_towers)
+cleanup_manager.register(gsm_spy_devices)
 
 # ============================================
 # SDR DEVICE REGISTRY
@@ -278,13 +300,13 @@ def get_sdr_device_status() -> dict[int, str]:
 # ============================================
 
 @app.before_request
-def require_login():
-    # Routes that don't require login (to avoid infinite redirect loop)
-    allowed_routes = ['login', 'static', 'favicon', 'health', 'health_check']
-
-    # Allow audio streaming endpoints without session auth
-    if request.path.startswith('/listening/audio/'):
-        return None
+def require_login():
+    # Routes that don't require login (to avoid infinite redirect loop)
+    allowed_routes = ['login', 'static', 'favicon', 'health', 'health_check']
+
+    # Allow audio streaming endpoints without session auth
+    if request.path.startswith('/listening/audio/'):
+        return None
 
     # Controller API endpoints use API key auth, not session auth
     # Allow agent push/pull endpoints without session login
@@ -652,6 +674,7 @@ def kill_all() -> Response:
     """Kill all decoder, WiFi, and Bluetooth processes."""
     global current_process, sensor_process, wifi_process, adsb_process, ais_process, acars_process
     global aprs_process, aprs_rtl_process, dsc_process, dsc_rtl_process, bt_process
+    global gsm_spy_process, gsm_spy_monitor_process
 
     # Import adsb and ais modules to reset their state
     from routes import adsb as adsb_module
@@ -663,7 +686,8 @@ def kill_all() -> Response:
         'rtl_fm', 'multimon-ng', 'rtl_433',
         'airodump-ng', 'aireplay-ng', 'airmon-ng',
         'dump1090', 'acarsdec', 'direwolf', 'AIS-catcher',
-        'hcitool', 'bluetoothctl'
+        'hcitool', 'bluetoothctl', 'grgsm_scanner', 'grgsm_livemon',
+        'tshark'
     ]
 
     for proc in processes_to_kill:
@@ -727,6 +751,24 @@ def kill_all() -> Response:
     except Exception:
         pass
 
+    # Reset GSM Spy state
+    with gsm_spy_lock:
+        if gsm_spy_process:
+            try:
+                safe_terminate(gsm_spy_process, 'grgsm_scanner')
+                killed.append('grgsm_scanner')
+            except Exception:
+                pass
+        gsm_spy_process = None
+
+        if gsm_spy_monitor_process:
+            try:
+                safe_terminate(gsm_spy_monitor_process, 'grgsm_livemon')
+                killed.append('grgsm_livemon')
+            except Exception:
+                pass
+        gsm_spy_monitor_process = None
+
     # Clear SDR device registry
     with sdr_device_registry_lock:
         sdr_device_registry.clear()
diff --git a/config.py b/config.py
index 029ef2c..25efa72 100644
--- a/config.py
+++ b/config.py
@@ -200,6 +200,14 @@ UPDATE_CHECK_INTERVAL_HOURS = _get_env_int('UPDATE_CHECK_INTERVAL_HOURS', 6)
 ADMIN_USERNAME = _get_env('ADMIN_USERNAME', 'admin')
 ADMIN_PASSWORD = _get_env('ADMIN_PASSWORD', 'admin')
 
+# GSM Spy settings
+GSM_OPENCELLID_API_KEY = _get_env('GSM_OPENCELLID_API_KEY', 'pk.68c92ecb85886de7b50ed5a4c73f9504')
+GSM_OPENCELLID_API_URL = _get_env('GSM_OPENCELLID_API_URL', 'https://opencellid.org/cell/get')
+GSM_API_DAILY_LIMIT = _get_env_int('GSM_API_DAILY_LIMIT', 1000)
+GSM_TA_METERS_PER_UNIT = _get_env_int('GSM_TA_METERS_PER_UNIT', 554)
+GSM_UPDATE_INTERVAL = _get_env_float('GSM_UPDATE_INTERVAL', 2.0)
+GSM_MAX_AGE_SECONDS = _get_env_int('GSM_MAX_AGE_SECONDS', 300)
+
 def configure_logging() -> None:
     """Configure application logging."""
     logging.basicConfig(
diff --git a/routes/__init__.py b/routes/__init__.py
index 8436739..6c45d3c 100644
--- a/routes/__init__.py
+++ b/routes/__init__.py
@@ -26,6 +26,7 @@ def register_blueprints(app):
     from .offline import offline_bp
     from .updater import updater_bp
     from .sstv import sstv_bp
+    from .gsm_spy import gsm_spy_bp
 
     app.register_blueprint(pager_bp)
     app.register_blueprint(sensor_bp)
@@ -51,6 +52,7 @@ def register_blueprints(app):
     app.register_blueprint(offline_bp)  # Offline mode settings
     app.register_blueprint(updater_bp)  # GitHub update checking
     app.register_blueprint(sstv_bp)  # ISS SSTV decoder
+    app.register_blueprint(gsm_spy_bp)  # GSM cellular intelligence
 
     # Initialize TSCM state with queue and lock from app
     import app as app_module
diff --git a/routes/gsm_spy.py b/routes/gsm_spy.py
new file mode 100644
index 0000000..71c3498
--- /dev/null
+++ b/routes/gsm_spy.py
@@ -0,0 +1,1171 @@
+"""GSM Spy route handlers for cellular tower and device tracking."""
+
+from __future__ import annotations
+
+import json
+import logging
+import queue
+import re
+import subprocess
+import threading
+import time
+from datetime import datetime, timedelta
+from typing import Any
+
+import requests
+from flask import Blueprint, Response, jsonify, render_template, request
+
+import app as app_module
+import config
+from config import SHARED_OBSERVER_LOCATION_ENABLED
+from utils.database import get_db
+from utils.sse import format_sse
+from utils.validation import validate_device_index
+
+logger = logging.getLogger('intercept.gsm_spy')
+
+gsm_spy_bp = Blueprint('gsm_spy', __name__, url_prefix='/gsm_spy')
+
+# Regional band configurations (G-01)
+REGIONAL_BANDS = {
+    'Americas': {
+        'GSM850': {'start': 869e6, 'end': 894e6, 'arfcn_start': 128, 'arfcn_end': 251},
+        'PCS1900': {'start': 1930e6, 'end': 1990e6, 'arfcn_start': 512, 'arfcn_end': 810}
+    },
+    'Europe': {
+        'EGSM900': {'start': 925e6, 'end': 960e6, 'arfcn_start': 0, 'arfcn_end': 124}
+    },
+    'Asia': {
+        'EGSM900': {'start': 925e6, 'end': 960e6, 'arfcn_start': 0, 'arfcn_end': 124},
+        'DCS1800': {'start': 1805e6, 'end': 1880e6, 'arfcn_start': 512, 'arfcn_end': 885}
+    }
+}
+
+# Module state tracking
+gsm_using_service = False
+gsm_connected = False
+gsm_towers_found = 0
+gsm_devices_tracked = 0
+
+
+# ============================================
+# API Usage Tracking Helper Functions
+# ============================================
+
+def get_api_usage_today():
+    """Get OpenCellID API usage count for today."""
+    from utils.database import get_setting
+    today = datetime.now().date().isoformat()
+    usage_date = get_setting('gsm.opencellid.usage_date', '')
+
+    # Reset counter if new day
+    if usage_date != today:
+        from utils.database import set_setting
+        set_setting('gsm.opencellid.usage_date', today)
+        set_setting('gsm.opencellid.usage_count', 0)
+        return 0
+
+    return get_setting('gsm.opencellid.usage_count', 0)
+
+
+def increment_api_usage():
+    """Increment OpenCellID API usage counter."""
+    from utils.database import set_setting
+    current = get_api_usage_today()
+    set_setting('gsm.opencellid.usage_count', current + 1)
+    return current + 1
+
+
+def can_use_api():
+    """Check if we can make an API call within daily limit."""
+    current_usage = get_api_usage_today()
+    return current_usage < config.GSM_API_DAILY_LIMIT
+
+
+@gsm_spy_bp.route('/dashboard')
+def dashboard():
+    """Render GSM Spy dashboard."""
+    return render_template(
+        'gsm_spy_dashboard.html',
+        shared_observer_location=SHARED_OBSERVER_LOCATION_ENABLED
+    )
+
+
+@gsm_spy_bp.route('/start', methods=['POST'])
+def start_scanner():
+    """Start GSM scanner (G-01 BTS Scanner)."""
+    global gsm_towers_found, gsm_connected
+
+    with app_module.gsm_spy_lock:
+        if app_module.gsm_spy_process:
+            return jsonify({'error': 'Scanner already running'}), 400
+
+        data = request.get_json() or {}
+        device_index = data.get('device', 0)
+        region = data.get('region', 'Americas')
+
+        # Validate device index
+        try:
+            device_index = validate_device_index(device_index)
+        except ValueError as e:
+            return jsonify({'error': str(e)}), 400
+
+        # Claim SDR device to prevent conflicts
+        from app import claim_sdr_device
+        claim_error = claim_sdr_device(device_index, 'GSM Spy')
+        if claim_error:
+            return jsonify({'error': claim_error}), 409
+
+        # Get frequency range for region
+        bands = REGIONAL_BANDS.get(region, REGIONAL_BANDS['Americas'])
+
+        # Build grgsm_scanner command
+        # Example: grgsm_scanner -d 0 --freq-range 869000000:894000000
+        freq_ranges = []
+        for band_name, band_info in bands.items():
+            freq_ranges.append(f"{int(band_info['start'])}:{int(band_info['end'])}")
+
+        freq_range_arg = ','.join(freq_ranges)
+
+        try:
+            cmd = [
+                'grgsm_scanner',
+                '-d', str(device_index),
+                '--freq-range', freq_range_arg
+            ]
+
+            logger.info(f"Starting GSM scanner: {' '.join(cmd)}")
+
+            process = subprocess.Popen(
+                cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                universal_newlines=True,
+                bufsize=1
+            )
+
+            app_module.gsm_spy_process = process
+            app_module.gsm_spy_active_device = device_index
+            app_module.gsm_spy_region = region
+
+            # Start output parsing thread
+            scanner_thread_obj = threading.Thread(
+                target=scanner_thread,
+                args=(process,),
+                daemon=True
+            )
+            scanner_thread_obj.start()
+
+            gsm_connected = True
+
+            return jsonify({
+                'status': 'started',
+                'device': device_index,
+                'region': region
+            })
+
+        except FileNotFoundError:
+            from app import release_sdr_device
+            release_sdr_device(device_index)
+            return jsonify({'error': 'grgsm_scanner not found. Please install gr-gsm.'}), 500
+        except Exception as e:
+            from app import release_sdr_device
+            release_sdr_device(device_index)
+            logger.error(f"Error starting GSM scanner: {e}")
+            return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/monitor', methods=['POST'])
+def start_monitor():
+    """Start monitoring specific tower (G-02 Decoding)."""
+    with app_module.gsm_spy_lock:
+        if app_module.gsm_spy_monitor_process:
+            return jsonify({'error': 'Monitor already running'}), 400
+
+        data = request.get_json() or {}
+        arfcn = data.get('arfcn')
+        device_index = data.get('device', app_module.gsm_spy_active_device or 0)
+
+        if not arfcn:
+            return jsonify({'error': 'ARFCN required'}), 400
+
+        try:
+            # grgsm_livemon -a ARFCN -d DEVICE | tshark -i lo -Y "gsm_a.rr.timing_advance || gsm_a.tmsi || gsm_a.imsi"
+            grgsm_cmd = [
+                'grgsm_livemon',
+                '-a', str(arfcn),
+                '-d', str(device_index)
+            ]
+
+            tshark_cmd = [
+                'tshark',
+                '-i', 'lo',
+                '-Y', 'gsm_a.rr.timing_advance || gsm_a.tmsi || gsm_a.imsi',
+                '-T', 'fields',
+                '-e', 'gsm_a.rr.timing_advance',
+                '-e', 'gsm_a.tmsi',
+                '-e', 'gsm_a.imsi',
+                '-e', 'gsm_a.lac',
+                '-e', 'gsm_a.cellid'
+            ]
+
+            logger.info(f"Starting GSM monitor: {' '.join(grgsm_cmd)} | {' '.join(tshark_cmd)}")
+
+            # Start grgsm_livemon
+            grgsm_proc = subprocess.Popen(
+                grgsm_cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE
+            )
+
+            # Start tshark
+            tshark_proc = subprocess.Popen(
+                tshark_cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                universal_newlines=True,
+                bufsize=1
+            )
+
+            app_module.gsm_spy_monitor_process = tshark_proc
+            app_module.gsm_spy_selected_arfcn = arfcn
+
+            # Start monitoring thread
+            monitor_thread_obj = threading.Thread(
+                target=monitor_thread,
+                args=(tshark_proc,),
+                daemon=True
+            )
+            monitor_thread_obj.start()
+
+            return jsonify({
+                'status': 'monitoring',
+                'arfcn': arfcn,
+                'device': device_index
+            })
+
+        except FileNotFoundError as e:
+            return jsonify({'error': f'Tool not found: {e}'}), 500
+        except Exception as e:
+            logger.error(f"Error starting monitor: {e}")
+            return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/stop', methods=['POST'])
+def stop_scanner():
+    """Stop GSM scanner and monitor."""
+    global gsm_connected
+
+    with app_module.gsm_spy_lock:
+        killed = []
+
+        if app_module.gsm_spy_process:
+            try:
+                app_module.gsm_spy_process.terminate()
+                app_module.gsm_spy_process.wait(timeout=5)
+                killed.append('scanner')
+            except Exception:
+                try:
+                    app_module.gsm_spy_process.kill()
+                except Exception:
+                    pass
+            app_module.gsm_spy_process = None
+
+        if app_module.gsm_spy_monitor_process:
+            try:
+                app_module.gsm_spy_monitor_process.terminate()
+                app_module.gsm_spy_monitor_process.wait(timeout=5)
+                killed.append('monitor')
+            except Exception:
+                try:
+                    app_module.gsm_spy_monitor_process.kill()
+                except Exception:
+                    pass
+            app_module.gsm_spy_monitor_process = None
+
+        # Release SDR device
+        if app_module.gsm_spy_active_device is not None:
+            from app import release_sdr_device
+            release_sdr_device(app_module.gsm_spy_active_device)
+            logger.info(f"Released SDR device {app_module.gsm_spy_active_device}")
+
+        app_module.gsm_spy_active_device = None
+        app_module.gsm_spy_selected_arfcn = None
+        gsm_connected = False
+
+        return jsonify({'status': 'stopped', 'killed': killed})
+
+
+@gsm_spy_bp.route('/stream')
+def stream():
+    """SSE stream for real-time GSM updates."""
+    def generate():
+        """Generate SSE events."""
+        last_keepalive = time.time()
+
+        while True:
+            try:
+                # Check if scanner is still running
+                if not app_module.gsm_spy_process and not app_module.gsm_spy_monitor_process:
+                    yield format_sse({'type': 'disconnected'})
+                    break
+
+                # Try to get data from queue
+                try:
+                    data = app_module.gsm_spy_queue.get(timeout=1)
+                    yield format_sse(data)
+                    last_keepalive = time.time()
+                except queue.Empty:
+                    # Send keepalive if needed
+                    if time.time() - last_keepalive > 30:
+                        yield format_sse({'type': 'keepalive'})
+                        last_keepalive = time.time()
+
+            except GeneratorExit:
+                break
+            except Exception as e:
+                logger.error(f"Error in GSM stream: {e}")
+                yield format_sse({'type': 'error', 'message': str(e)})
+                break
+
+    return Response(
+        generate(),
+        mimetype='text/event-stream',
+        headers={
+            'Cache-Control': 'no-cache',
+            'X-Accel-Buffering': 'no'
+        }
+    )
+
+
+@gsm_spy_bp.route('/status')
+def status():
+    """Get current GSM Spy status."""
+    api_usage = get_api_usage_today()
+    return jsonify({
+        'running': app_module.gsm_spy_process is not None,
+        'monitoring': app_module.gsm_spy_monitor_process is not None,
+        'towers_found': gsm_towers_found,
+        'devices_tracked': gsm_devices_tracked,
+        'device': app_module.gsm_spy_active_device,
+        'region': app_module.gsm_spy_region,
+        'selected_arfcn': app_module.gsm_spy_selected_arfcn,
+        'api_usage_today': api_usage,
+        'api_limit': config.GSM_API_DAILY_LIMIT,
+        'api_remaining': config.GSM_API_DAILY_LIMIT - api_usage
+    })
+
+
+@gsm_spy_bp.route('/lookup_cell', methods=['POST'])
+def lookup_cell():
+    """Lookup cell tower via OpenCellID (G-05)."""
+    data = request.get_json() or {}
+    mcc = data.get('mcc')
+    mnc = data.get('mnc')
+    lac = data.get('lac')
+    cid = data.get('cid')
+
+    if not all([mcc, mnc, lac, cid]):
+        return jsonify({'error': 'MCC, MNC, LAC, and CID required'}), 400
+
+    try:
+        # Check local cache first
+        with get_db() as conn:
+            result = conn.execute('''
+                SELECT lat, lon, azimuth, range_meters, operator, radio
+                FROM gsm_cells
+                WHERE mcc = ? AND mnc = ? AND lac = ? AND cid = ?
+            ''', (mcc, mnc, lac, cid)).fetchone()
+
+            if result:
+                return jsonify({
+                    'source': 'cache',
+                    'lat': result['lat'],
+                    'lon': result['lon'],
+                    'azimuth': result['azimuth'],
+                    'range': result['range_meters'],
+                    'operator': result['operator'],
+                    'radio': result['radio']
+                })
+
+            # Check API usage limit
+            if not can_use_api():
+                current_usage = get_api_usage_today()
+                return jsonify({
+                    'error': 'OpenCellID API daily limit reached',
+                    'usage_today': current_usage,
+                    'limit': config.GSM_API_DAILY_LIMIT
+                }), 429
+
+            # Call OpenCellID API
+            api_url = config.GSM_OPENCELLID_API_URL
+            params = {
+                'key': config.GSM_OPENCELLID_API_KEY,
+                'mcc': mcc,
+                'mnc': mnc,
+                'lac': lac,
+                'cellid': cid,
+                'format': 'json'
+            }
+
+            response = requests.get(api_url, params=params, timeout=10)
+
+            if response.status_code == 200:
+                cell_data = response.json()
+
+                # Increment API usage counter
+                usage_count = increment_api_usage()
+                logger.info(f"OpenCellID API call #{usage_count} today")
+
+                # Cache the result
+                conn.execute('''
+                    INSERT OR REPLACE INTO gsm_cells
+                    (mcc, mnc, lac, cid, lat, lon, azimuth, range_meters, samples, radio, operator, last_verified)
+                    VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, CURRENT_TIMESTAMP)
+                ''', (
+                    mcc, mnc, lac, cid,
+                    cell_data.get('lat'),
+                    cell_data.get('lon'),
+                    cell_data.get('azimuth'),
+                    cell_data.get('range'),
+                    cell_data.get('samples'),
+                    cell_data.get('radio'),
+                    cell_data.get('operator')
+                ))
+                conn.commit()
+
+                return jsonify({
+                    'source': 'api',
+                    'lat': cell_data.get('lat'),
+                    'lon': cell_data.get('lon'),
+                    'azimuth': cell_data.get('azimuth'),
+                    'range': cell_data.get('range'),
+                    'operator': cell_data.get('operator'),
+                    'radio': cell_data.get('radio')
+                })
+            else:
+                return jsonify({'error': 'Cell not found in OpenCellID'}), 404
+
+    except Exception as e:
+        logger.error(f"Error looking up cell: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/detect_rogue', methods=['POST'])
+def detect_rogue():
+    """Analyze and flag rogue towers (G-07)."""
+    data = request.get_json() or {}
+    tower_info = data.get('tower')
+
+    if not tower_info:
+        return jsonify({'error': 'Tower info required'}), 400
+
+    try:
+        is_rogue = False
+        reasons = []
+
+        # Check if tower exists in OpenCellID
+        mcc = tower_info.get('mcc')
+        mnc = tower_info.get('mnc')
+        lac = tower_info.get('lac')
+        cid = tower_info.get('cid')
+
+        if all([mcc, mnc, lac, cid]):
+            with get_db() as conn:
+                result = conn.execute('''
+                    SELECT id FROM gsm_cells
+                    WHERE mcc = ? AND mnc = ? AND lac = ? AND cid = ?
+                ''', (mcc, mnc, lac, cid)).fetchone()
+
+                if not result:
+                    is_rogue = True
+                    reasons.append('Tower not found in OpenCellID database')
+
+        # Check signal strength anomalies
+        signal = tower_info.get('signal_strength', 0)
+        if signal > -50:  # Suspiciously strong signal
+            is_rogue = True
+            reasons.append(f'Unusually strong signal: {signal} dBm')
+
+        # If rogue, insert into database
+        if is_rogue:
+            with get_db() as conn:
+                conn.execute('''
+                    INSERT INTO gsm_rogues
+                    (arfcn, mcc, mnc, lac, cid, signal_strength, reason, threat_level)
+                    VALUES (?, ?, ?, ?, ?, ?, ?, ?)
+                ''', (
+                    tower_info.get('arfcn'),
+                    mcc, mnc, lac, cid,
+                    signal,
+                    '; '.join(reasons),
+                    'high' if len(reasons) > 1 else 'medium'
+                ))
+                conn.commit()
+
+        return jsonify({
+            'is_rogue': is_rogue,
+            'reasons': reasons
+        })
+
+    except Exception as e:
+        logger.error(f"Error detecting rogue: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/towers')
+def get_towers():
+    """Get all detected towers."""
+    towers = []
+    for key, tower_data in app_module.gsm_spy_towers.items():
+        towers.append(tower_data)
+    return jsonify(towers)
+
+
+@gsm_spy_bp.route('/devices')
+def get_devices():
+    """Get all tracked devices (IMSI/TMSI)."""
+    devices = []
+    for key, device_data in app_module.gsm_spy_devices.items():
+        devices.append(device_data)
+    return jsonify(devices)
+
+
+@gsm_spy_bp.route('/rogues')
+def get_rogues():
+    """Get all detected rogue towers."""
+    try:
+        with get_db() as conn:
+            results = conn.execute('''
+                SELECT * FROM gsm_rogues
+                WHERE acknowledged = 0
+                ORDER BY detected_at DESC
+                LIMIT 50
+            ''').fetchall()
+
+            rogues = [dict(row) for row in results]
+            return jsonify(rogues)
+    except Exception as e:
+        logger.error(f"Error fetching rogues: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+# ============================================
+# Advanced Features (G-08 through G-12)
+# ============================================
+
+@gsm_spy_bp.route('/velocity', methods=['GET'])
+def get_velocity_data():
+    """Get velocity vectoring data for tracked devices (G-08)."""
+    try:
+        device_id = request.args.get('device_id')
+        minutes = int(request.args.get('minutes', 60))  # Last 60 minutes by default
+
+        with get_db() as conn:
+            # Get velocity log entries
+            query = '''
+                SELECT * FROM gsm_velocity_log
+                WHERE timestamp >= datetime('now', '-' || ? || ' minutes')
+            '''
+            params = [minutes]
+
+            if device_id:
+                query += ' AND device_id = ?'
+                params.append(device_id)
+
+            query += ' ORDER BY timestamp DESC LIMIT 100'
+
+            results = conn.execute(query, params).fetchall()
+            velocity_data = [dict(row) for row in results]
+
+            return jsonify(velocity_data)
+    except Exception as e:
+        logger.error(f"Error fetching velocity data: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/velocity/calculate', methods=['POST'])
+def calculate_velocity():
+    """Calculate velocity for a device based on TA transitions (G-08)."""
+    data = request.get_json() or {}
+    device_id = data.get('device_id')
+
+    if not device_id:
+        return jsonify({'error': 'device_id required'}), 400
+
+    try:
+        with get_db() as conn:
+            # Get last two TA readings for this device
+            results = conn.execute('''
+                SELECT ta_value, cid, timestamp
+                FROM gsm_signals
+                WHERE (imsi = ? OR tmsi = ?)
+                ORDER BY timestamp DESC
+                LIMIT 2
+            ''', (device_id, device_id)).fetchall()
+
+            if len(results) < 2:
+                return jsonify({'velocity': 0, 'message': 'Insufficient data'})
+
+            curr = dict(results[0])
+            prev = dict(results[1])
+
+            # Calculate distance change (TA * 554 meters)
+            curr_distance = curr['ta_value'] * config.GSM_TA_METERS_PER_UNIT
+            prev_distance = prev['ta_value'] * config.GSM_TA_METERS_PER_UNIT
+            distance_change = abs(curr_distance - prev_distance)
+
+            # Calculate time difference
+            curr_time = datetime.fromisoformat(curr['timestamp'])
+            prev_time = datetime.fromisoformat(prev['timestamp'])
+            time_diff_seconds = (curr_time - prev_time).total_seconds()
+
+            # Calculate velocity (m/s)
+            if time_diff_seconds > 0:
+                velocity = distance_change / time_diff_seconds
+            else:
+                velocity = 0
+
+            # Store in velocity log
+            conn.execute('''
+                INSERT INTO gsm_velocity_log
+                (device_id, prev_ta, curr_ta, prev_cid, curr_cid, estimated_velocity)
+                VALUES (?, ?, ?, ?, ?, ?)
+            ''', (device_id, prev['ta_value'], curr['ta_value'],
+                  prev['cid'], curr['cid'], velocity))
+            conn.commit()
+
+            return jsonify({
+                'device_id': device_id,
+                'velocity_mps': round(velocity, 2),
+                'velocity_kmh': round(velocity * 3.6, 2),
+                'distance_change_m': round(distance_change, 2),
+                'time_diff_s': round(time_diff_seconds, 2)
+            })
+
+    except Exception as e:
+        logger.error(f"Error calculating velocity: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/crowd_density', methods=['GET'])
+def get_crowd_density():
+    """Get crowd density data by sector (G-09)."""
+    try:
+        hours = int(request.args.get('hours', 1))  # Last 1 hour by default
+        cid = request.args.get('cid')  # Optional: specific cell
+
+        with get_db() as conn:
+            # Count unique TMSI per cell in time window
+            query = '''
+                SELECT
+                    cid,
+                    lac,
+                    COUNT(DISTINCT tmsi) as unique_devices,
+                    COUNT(*) as total_pings,
+                    MIN(timestamp) as first_seen,
+                    MAX(timestamp) as last_seen
+                FROM gsm_tmsi_log
+                WHERE timestamp >= datetime('now', '-' || ? || ' hours')
+            '''
+            params = [hours]
+
+            if cid:
+                query += ' AND cid = ?'
+                params.append(cid)
+
+            query += ' GROUP BY cid, lac ORDER BY unique_devices DESC'
+
+            results = conn.execute(query, params).fetchall()
+            density_data = []
+
+            for row in results:
+                density_data.append({
+                    'cid': row['cid'],
+                    'lac': row['lac'],
+                    'unique_devices': row['unique_devices'],
+                    'total_pings': row['total_pings'],
+                    'first_seen': row['first_seen'],
+                    'last_seen': row['last_seen'],
+                    'density_level': 'high' if row['unique_devices'] > 20 else
+                                   'medium' if row['unique_devices'] > 10 else 'low'
+                })
+
+            return jsonify(density_data)
+
+    except Exception as e:
+        logger.error(f"Error fetching crowd density: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/life_patterns', methods=['GET'])
+def get_life_patterns():
+    """Get life pattern analysis for a device (G-10)."""
+    try:
+        device_id = request.args.get('device_id')
+        if not device_id:
+            return jsonify({'error': 'device_id required'}), 400
+
+        with get_db() as conn:
+            # Get historical signal data
+            results = conn.execute('''
+                SELECT
+                    strftime('%H', timestamp) as hour,
+                    strftime('%w', timestamp) as day_of_week,
+                    cid,
+                    lac,
+                    COUNT(*) as occurrences
+                FROM gsm_signals
+                WHERE (imsi = ? OR tmsi = ?)
+                AND timestamp >= datetime('now', '-60 days')
+                GROUP BY hour, day_of_week, cid, lac
+                ORDER BY occurrences DESC
+            ''', (device_id, device_id)).fetchall()
+
+            patterns = []
+            for row in results:
+                patterns.append({
+                    'hour': int(row['hour']),
+                    'day_of_week': int(row['day_of_week']),
+                    'cid': row['cid'],
+                    'lac': row['lac'],
+                    'occurrences': row['occurrences'],
+                    'day_name': ['Sun', 'Mon', 'Tue', 'Wed', 'Thu', 'Fri', 'Sat'][int(row['day_of_week'])]
+                })
+
+            # Identify regular patterns
+            regular_locations = []
+            for pattern in patterns[:5]:  # Top 5 most frequent
+                if pattern['occurrences'] >= 3:  # Seen at least 3 times
+                    regular_locations.append({
+                        'cid': pattern['cid'],
+                        'typical_time': f"{pattern['day_name']} {pattern['hour']:02d}:00",
+                        'frequency': pattern['occurrences']
+                    })
+
+            return jsonify({
+                'device_id': device_id,
+                'patterns': patterns,
+                'regular_locations': regular_locations,
+                'total_observations': sum(p['occurrences'] for p in patterns)
+            })
+
+    except Exception as e:
+        logger.error(f"Error analyzing life patterns: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/neighbor_audit', methods=['GET'])
+def neighbor_audit():
+    """Audit neighbor cell lists for consistency (G-11)."""
+    try:
+        cid = request.args.get('cid')
+        if not cid:
+            return jsonify({'error': 'cid required'}), 400
+
+        with get_db() as conn:
+            # Get tower info with metadata (neighbor list stored in metadata JSON)
+            result = conn.execute('''
+                SELECT metadata FROM gsm_cells WHERE cid = ?
+            ''', (cid,)).fetchone()
+
+            if not result or not result['metadata']:
+                return jsonify({
+                    'cid': cid,
+                    'status': 'no_data',
+                    'message': 'No neighbor list data available'
+                })
+
+            # Parse metadata JSON
+            metadata = json.loads(result['metadata'])
+            neighbor_list = metadata.get('neighbors', [])
+
+            # Audit consistency
+            issues = []
+            for neighbor_cid in neighbor_list:
+                # Check if neighbor exists in database
+                neighbor_exists = conn.execute('''
+                    SELECT id FROM gsm_cells WHERE cid = ?
+                ''', (neighbor_cid,)).fetchone()
+
+                if not neighbor_exists:
+                    issues.append({
+                        'type': 'missing_neighbor',
+                        'cid': neighbor_cid,
+                        'message': f'Neighbor CID {neighbor_cid} not found in database'
+                    })
+
+            return jsonify({
+                'cid': cid,
+                'neighbor_count': len(neighbor_list),
+                'neighbors': neighbor_list,
+                'issues': issues,
+                'status': 'suspicious' if issues else 'normal'
+            })
+
+    except Exception as e:
+        logger.error(f"Error auditing neighbors: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+@gsm_spy_bp.route('/traffic_correlation', methods=['GET'])
+def traffic_correlation():
+    """Correlate uplink/downlink traffic for pairing analysis (G-12)."""
+    try:
+        cid = request.args.get('cid')
+        minutes = int(request.args.get('minutes', 5))
+
+        with get_db() as conn:
+            # Get recent signal activity for this cell
+            results = conn.execute('''
+                SELECT
+                    imsi,
+                    tmsi,
+                    ta_value,
+                    timestamp,
+                    metadata
+                FROM gsm_signals
+                WHERE cid = ?
+                AND timestamp >= datetime('now', '-' || ? || ' minutes')
+                ORDER BY timestamp DESC
+            ''', (cid, minutes)).fetchall()
+
+            correlations = []
+            seen_devices = set()
+
+            for row in results:
+                device_id = row['imsi'] or row['tmsi']
+                if device_id and device_id not in seen_devices:
+                    seen_devices.add(device_id)
+
+                    # Simple correlation: count bursts
+                    burst_count = conn.execute('''
+                        SELECT COUNT(*) as bursts
+                        FROM gsm_signals
+                        WHERE (imsi = ? OR tmsi = ?)
+                        AND cid = ?
+                        AND timestamp >= datetime('now', '-' || ? || ' minutes')
+                    ''', (device_id, device_id, cid, minutes)).fetchone()
+
+                    correlations.append({
+                        'device_id': device_id,
+                        'burst_count': burst_count['bursts'],
+                        'last_seen': row['timestamp'],
+                        'ta_value': row['ta_value'],
+                        'activity_level': 'high' if burst_count['bursts'] > 10 else
+                                        'medium' if burst_count['bursts'] > 5 else 'low'
+                    })
+
+            return jsonify({
+                'cid': cid,
+                'time_window_minutes': minutes,
+                'active_devices': len(correlations),
+                'correlations': correlations
+            })
+
+    except Exception as e:
+        logger.error(f"Error correlating traffic: {e}")
+        return jsonify({'error': str(e)}), 500
+
+
+# ============================================
+# Helper Functions
+# ============================================
+
+def parse_grgsm_scanner_output(line: str) -> dict[str, Any] | None:
+    """Parse grgsm_scanner output line."""
+    try:
+        # Example output: "ARFCN: 123, Freq: 935.2MHz, CID: 1234, LAC: 567, MCC: 310, MNC: 260, PWR: -85dBm"
+        # This is a placeholder - actual format depends on grgsm_scanner output
+
+        # Simple regex patterns
+        arfcn_match = re.search(r'ARFCN[:\s]+(\d+)', line)
+        freq_match = re.search(r'Freq[:\s]+([\d.]+)', line)
+        cid_match = re.search(r'CID[:\s]+(\d+)', line)
+        lac_match = re.search(r'LAC[:\s]+(\d+)', line)
+        mcc_match = re.search(r'MCC[:\s]+(\d+)', line)
+        mnc_match = re.search(r'MNC[:\s]+(\d+)', line)
+        pwr_match = re.search(r'PWR[:\s]+([-\d.]+)', line)
+
+        if arfcn_match:
+            data = {
+                'type': 'tower',
+                'arfcn': int(arfcn_match.group(1)),
+                'frequency': float(freq_match.group(1)) if freq_match else None,
+                'cid': int(cid_match.group(1)) if cid_match else None,
+                'lac': int(lac_match.group(1)) if lac_match else None,
+                'mcc': int(mcc_match.group(1)) if mcc_match else None,
+                'mnc': int(mnc_match.group(1)) if mnc_match else None,
+                'signal_strength': float(pwr_match.group(1)) if pwr_match else None,
+                'timestamp': datetime.now().isoformat()
+            }
+            return data
+
+    except Exception as e:
+        logger.debug(f"Failed to parse scanner line: {line} - {e}")
+
+    return None
+
+
+def parse_tshark_output(line: str) -> dict[str, Any] | None:
+    """Parse tshark filtered GSM output."""
+    try:
+        # tshark output format: ta_value\ttmsi\timsi\tlac\tcid
+        parts = line.strip().split('\t')
+
+        if len(parts) >= 5:
+            data = {
+                'type': 'device',
+                'ta_value': int(parts[0]) if parts[0] else None,
+                'tmsi': parts[1] if parts[1] else None,
+                'imsi': parts[2] if parts[2] else None,
+                'lac': int(parts[3]) if parts[3] else None,
+                'cid': int(parts[4]) if parts[4] else None,
+                'timestamp': datetime.now().isoformat()
+            }
+
+            # Calculate distance from TA
+            if data['ta_value'] is not None:
+                data['distance_meters'] = data['ta_value'] * config.GSM_TA_METERS_PER_UNIT
+
+            return data
+
+    except Exception as e:
+        logger.debug(f"Failed to parse tshark line: {line} - {e}")
+
+    return None
+
+
+def auto_start_monitor(tower_data):
+    """Automatically start monitoring the strongest tower found."""
+    try:
+        arfcn = tower_data.get('arfcn')
+        if not arfcn:
+            logger.warning("Cannot auto-monitor: no ARFCN in tower data")
+            return
+
+        logger.info(f"Auto-monitoring strongest tower: ARFCN {arfcn}, Signal {tower_data.get('signal_strength')} dBm")
+
+        # Brief delay to ensure scanner has stabilized
+        time.sleep(2)
+
+        with app_module.gsm_spy_lock:
+            if app_module.gsm_spy_monitor_process:
+                logger.info("Monitor already running, skipping auto-start")
+                return
+
+            device_index = app_module.gsm_spy_active_device or 0
+
+            # Start grgsm_livemon
+            grgsm_cmd = [
+                'grgsm_livemon',
+                '-a', str(arfcn),
+                '-d', str(device_index)
+            ]
+
+            tshark_cmd = [
+                'tshark',
+                '-i', 'lo',
+                '-Y', 'gsm_a.rr.timing_advance || gsm_a.tmsi || gsm_a.imsi',
+                '-T', 'fields',
+                '-e', 'gsm_a.rr.timing_advance',
+                '-e', 'gsm_a.tmsi',
+                '-e', 'gsm_a.imsi',
+                '-e', 'gsm_a.lac',
+                '-e', 'gsm_a.cellid'
+            ]
+
+            logger.info(f"Starting auto-monitor: {' '.join(grgsm_cmd)} | {' '.join(tshark_cmd)}")
+
+            # Start grgsm_livemon (we don't capture its output)
+            grgsm_proc = subprocess.Popen(
+                grgsm_cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE
+            )
+
+            # Start tshark
+            tshark_proc = subprocess.Popen(
+                tshark_cmd,
+                stdout=subprocess.PIPE,
+                stderr=subprocess.PIPE,
+                universal_newlines=True,
+                bufsize=1
+            )
+
+            app_module.gsm_spy_monitor_process = tshark_proc
+            app_module.gsm_spy_selected_arfcn = arfcn
+
+            # Start monitoring thread
+            monitor_thread_obj = threading.Thread(
+                target=monitor_thread,
+                args=(tshark_proc,),
+                daemon=True
+            )
+            monitor_thread_obj.start()
+
+            # Send SSE notification
+            try:
+                app_module.gsm_spy_queue.put_nowait({
+                    'type': 'auto_monitor_started',
+                    'arfcn': arfcn,
+                    'tower': tower_data
+                })
+            except queue.Full:
+                pass
+
+            logger.info(f"Auto-monitoring started for ARFCN {arfcn}")
+
+    except Exception as e:
+        logger.error(f"Error in auto-monitoring: {e}")
+
+
+def scanner_thread(process):
+    """Thread to read grgsm_scanner output."""
+    global gsm_towers_found
+
+    strongest_tower = None
+    auto_monitor_triggered = False
+
+    try:
+        for line in process.stdout:
+            if not line:
+                continue
+
+            parsed = parse_grgsm_scanner_output(line)
+            if parsed:
+                # Store in DataStore
+                key = f"{parsed.get('mcc')}_{parsed.get('mnc')}_{parsed.get('lac')}_{parsed.get('cid')}"
+                app_module.gsm_spy_towers[key] = parsed
+
+                # Track strongest tower for auto-monitoring
+                signal_strength = parsed.get('signal_strength', -999)
+                if strongest_tower is None or signal_strength > strongest_tower.get('signal_strength', -999):
+                    strongest_tower = parsed
+
+                # Queue for SSE stream
+                try:
+                    app_module.gsm_spy_queue.put_nowait(parsed)
+                except queue.Full:
+                    pass
+
+                gsm_towers_found += 1
+
+                # Auto-monitor strongest tower after finding 3+ towers
+                if gsm_towers_found >= 3 and not auto_monitor_triggered and strongest_tower:
+                    auto_monitor_triggered = True
+                    threading.Thread(
+                        target=auto_start_monitor,
+                        args=(strongest_tower,),
+                        daemon=True
+                    ).start()
+
+    except Exception as e:
+        logger.error(f"Scanner thread error: {e}")
+    finally:
+        logger.info("Scanner thread terminated")
+
+
+def monitor_thread(process):
+    """Thread to read grgsm_livemon | tshark output."""
+    global gsm_devices_tracked
+
+    try:
+        for line in process.stdout:
+            if not line:
+                continue
+
+            parsed = parse_tshark_output(line)
+            if parsed:
+                # Store in DataStore
+                key = parsed.get('tmsi') or parsed.get('imsi') or str(time.time())
+                app_module.gsm_spy_devices[key] = parsed
+
+                # Queue for SSE stream
+                try:
+                    app_module.gsm_spy_queue.put_nowait(parsed)
+                except queue.Full:
+                    pass
+
+                # Store in database for historical analysis
+                try:
+                    with get_db() as conn:
+                        # gsm_signals table
+                        conn.execute('''
+                            INSERT INTO gsm_signals
+                            (imsi, tmsi, lac, cid, ta_value, arfcn)
+                            VALUES (?, ?, ?, ?, ?, ?)
+                        ''', (
+                            parsed.get('imsi'),
+                            parsed.get('tmsi'),
+                            parsed.get('lac'),
+                            parsed.get('cid'),
+                            parsed.get('ta_value'),
+                            app_module.gsm_spy_selected_arfcn
+                        ))
+
+                        # gsm_tmsi_log table for crowd density
+                        if parsed.get('tmsi'):
+                            conn.execute('''
+                                INSERT INTO gsm_tmsi_log
+                                (tmsi, lac, cid, ta_value)
+                                VALUES (?, ?, ?, ?)
+                            ''', (
+                                parsed.get('tmsi'),
+                                parsed.get('lac'),
+                                parsed.get('cid'),
+                                parsed.get('ta_value')
+                            ))
+
+                        # Velocity calculation (G-08)
+                        device_id = parsed.get('imsi') or parsed.get('tmsi')
+                        if device_id and parsed.get('ta_value') is not None:
+                            # Get previous TA reading
+                            prev_reading = conn.execute('''
+                                SELECT ta_value, cid, timestamp
+                                FROM gsm_signals
+                                WHERE (imsi = ? OR tmsi = ?)
+                                ORDER BY timestamp DESC
+                                LIMIT 1 OFFSET 1
+                            ''', (device_id, device_id)).fetchone()
+
+                            if prev_reading:
+                                # Calculate velocity
+                                curr_ta = parsed.get('ta_value')
+                                prev_ta = prev_reading['ta_value']
+                                curr_distance = curr_ta * config.GSM_TA_METERS_PER_UNIT
+                                prev_distance = prev_ta * config.GSM_TA_METERS_PER_UNIT
+                                distance_change = abs(curr_distance - prev_distance)
+
+                                # Time difference
+                                prev_time = datetime.fromisoformat(prev_reading['timestamp'])
+                                curr_time = datetime.now()
+                                time_diff_seconds = (curr_time - prev_time).total_seconds()
+
+                                if time_diff_seconds > 0:
+                                    velocity = distance_change / time_diff_seconds
+
+                                    # Store velocity
+                                    conn.execute('''
+                                        INSERT INTO gsm_velocity_log
+                                        (device_id, prev_ta, curr_ta, prev_cid, curr_cid, estimated_velocity)
+                                        VALUES (?, ?, ?, ?, ?, ?)
+                                    ''', (
+                                        device_id,
+                                        prev_ta,
+                                        curr_ta,
+                                        prev_reading['cid'],
+                                        parsed.get('cid'),
+                                        velocity
+                                    ))
+
+                        conn.commit()
+                except Exception as e:
+                    logger.error(f"Error storing device data: {e}")
+
+                gsm_devices_tracked += 1
+
+    except Exception as e:
+        logger.error(f"Monitor thread error: {e}")
+    finally:
+        logger.info("Monitor thread terminated")
diff --git a/setup.sh b/setup.sh
index e09e9c7..f237e88 100755
--- a/setup.sh
+++ b/setup.sh
@@ -533,6 +533,52 @@ install_macos_packages() {
   progress "Installing gpsd"
   brew_install gpsd
 
+  # gr-gsm for GSM Intelligence
+  if ! cmd_exists grgsm_scanner; then
+    echo
+    info "gr-gsm provides GSM cellular signal decoding..."
+    if ask_yes_no "Do you want to install gr-gsm?"; then
+      progress "Installing gr-gsm"
+      brew_install gnuradio
+      (brew_install gr-gsm) || {
+        warn "gr-gsm not available in Homebrew, attempting manual build..."
+        # Manual build instructions
+        if ask_yes_no "Attempt to build gr-gsm from source? (requires CMake and build tools)"; then
+          info "Cloning gr-gsm repository..."
+          git clone https://github.com/ptrkrysik/gr-gsm.git /tmp/gr-gsm
+          cd /tmp/gr-gsm
+          mkdir build && cd build
+          cmake ..
+          make -j$(sysctl -n hw.ncpu)
+          sudo make install
+          cd ~
+          rm -rf /tmp/gr-gsm
+          ok "gr-gsm installed successfully"
+        else
+          warn "Skipping gr-gsm source build. GSM Spy feature will not work."
+        fi
+      }
+    else
+      warn "Skipping gr-gsm installation. GSM Spy feature will not work."
+    fi
+  else
+    ok "gr-gsm already installed"
+  fi
+
+  # Wireshark (tshark) for packet analysis
+  if ! cmd_exists tshark; then
+    echo
+    info "tshark is used for GSM packet parsing..."
+    if ask_yes_no "Do you want to install tshark?"; then
+      progress "Installing Wireshark (tshark)"
+      brew_install wireshark
+    else
+      warn "Skipping tshark installation."
+    fi
+  else
+    ok "tshark already installed"
+  fi
+
   progress "Installing Ubertooth tools (optional)"
   if ! cmd_exists ubertooth-btle; then
     echo
@@ -961,6 +1007,87 @@ install_debian_packages() {
   progress "Installing gpsd"
   apt_install gpsd gpsd-clients || true
 
+  # gr-gsm for GSM Intelligence
+  if ! cmd_exists grgsm_scanner; then
+    echo
+    info "gr-gsm provides GSM cellular signal decoding..."
+    if ask_yes_no "Do you want to install gr-gsm?"; then
+      progress "Installing GNU Radio and gr-gsm"
+      # Try to install gr-gsm directly from package repositories
+      apt_install gnuradio gnuradio-dev gr-osmosdr gr-gsm || {
+        warn "gr-gsm package not available in repositories. Attempting source build..."
+
+        # Fallback: Build from source
+        progress "Building gr-gsm from source"
+        apt_install git cmake libboost-all-dev libcppunit-dev swig \
+                    doxygen liblog4cpp5-dev python3-scipy python3-numpy \
+                    libvolk-dev libuhd-dev libfftw3-dev || true
+
+        info "Cloning gr-gsm repository..."
+        if [ -d /tmp/gr-gsm ]; then
+          rm -rf /tmp/gr-gsm
+        fi
+
+        git clone https://github.com/ptrkrysik/gr-gsm.git /tmp/gr-gsm || {
+          warn "Failed to clone gr-gsm repository. GSM Spy will not be available."
+          return 0
+        }
+
+        cd /tmp/gr-gsm
+        mkdir -p build && cd build
+
+        # Try to find GNU Radio cmake files
+        if [ -d /usr/lib/x86_64-linux-gnu/cmake/gnuradio ]; then
+          export CMAKE_PREFIX_PATH="/usr/lib/x86_64-linux-gnu/cmake/gnuradio:$CMAKE_PREFIX_PATH"
+        fi
+
+        info "Running CMake configuration..."
+        if cmake .. 2>/dev/null; then
+          info "Compiling gr-gsm (this may take several minutes)..."
+          if make -j$(nproc) 2>/dev/null; then
+            $SUDO make install
+            $SUDO ldconfig
+            cd ~
+            rm -rf /tmp/gr-gsm
+            ok "gr-gsm built and installed successfully"
+          else
+            warn "gr-gsm compilation failed. GSM Spy feature will not work."
+            cd ~
+            rm -rf /tmp/gr-gsm
+          fi
+        else
+          warn "gr-gsm CMake configuration failed. GNU Radio 3.8+ may not be available."
+          cd ~
+          rm -rf /tmp/gr-gsm
+        fi
+      }
+
+      # Verify installation
+      if cmd_exists grgsm_scanner; then
+        ok "gr-gsm installed successfully"
+      else
+        warn "gr-gsm installation incomplete. GSM Spy feature will not work."
+      fi
+    else
+      warn "Skipping gr-gsm installation."
+    fi
+  else
+    ok "gr-gsm already installed"
+  fi
+
+  # Wireshark (tshark)
+  if ! cmd_exists tshark; then
+    echo
+    info "Installing tshark for GSM packet analysis..."
+    apt_install tshark || true
+    # Allow non-root capture
+    $SUDO dpkg-reconfigure wireshark-common 2>/dev/null || true
+    $SUDO usermod -a -G wireshark $USER 2>/dev/null || true
+    ok "tshark installed. You may need to re-login for wireshark group permissions."
+  else
+    ok "tshark already installed"
+  fi
+
   progress "Installing Python packages"
   apt_install python3-venv python3-pip || true
   # Install Python packages via apt (more reliable than pip on modern Debian/Ubuntu)
diff --git a/static/css/gsm_spy_dashboard.css b/static/css/gsm_spy_dashboard.css
new file mode 100644
index 0000000..c256a34
--- /dev/null
+++ b/static/css/gsm_spy_dashboard.css
@@ -0,0 +1,622 @@
+/* GSM SPY Dashboard Styles */
+
+:root {
+    --font-mono: 'IBM Plex Mono', 'JetBrains Mono', 'Courier New', monospace;
+    --bg-dark: #0b1118;
+    --bg-panel: #101823;
+    --bg-panel-hover: #1a2331;
+    --border-color: #263246;
+    --accent-green: #38c180;
+    --accent-cyan: #4aa3ff;
+    --accent-red: #e25d5d;
+    --accent-yellow: #ffa500;
+    --text-primary: #e8e8e8;
+    --text-secondary: #888;
+    --text-dim: #555;
+}
+
+* {
+    box-sizing: border-box;
+}
+
+body {
+    margin: 0;
+    padding: 0;
+    font-family: var(--font-mono);
+    background: var(--bg-dark);
+    color: var(--text-primary);
+    overflow: hidden;
+    font-size: 12px;
+}
+
+/* Radar background and scanline */
+.radar-bg {
+    position: fixed;
+    top: 0;
+    left: 0;
+    width: 100%;
+    height: 100%;
+    background: linear-gradient(rgba(255,255,255,0.02) 1px, transparent 1px),
+                linear-gradient(90deg, rgba(255,255,255,0.02) 1px, transparent 1px);
+    background-size: 50px 50px;
+    pointer-events: none;
+    z-index: 0;
+}
+
+.scanline {
+    position: fixed;
+    top: 0;
+    left: 0;
+    width: 100%;
+    height: 2px;
+    background: var(--accent-cyan);
+    opacity: 0.3;
+    animation: scan 3s linear infinite;
+    pointer-events: none;
+    z-index: 1;
+}
+
+@keyframes scan {
+    from { transform: translateY(0); }
+    to { transform: translateY(100vh); }
+}
+
+/* Header */
+.header {
+    position: fixed;
+    top: 0;
+    left: 0;
+    right: 0;
+    height: 60px;
+    background: var(--bg-panel);
+    border-bottom: 1px solid var(--border-color);
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    padding: 0 20px;
+    z-index: 100;
+}
+
+.logo {
+    font-size: 24px;
+    font-weight: 700;
+    color: var(--accent-cyan);
+    letter-spacing: 2px;
+}
+
+.status-bar {
+    display: flex;
+    gap: 15px;
+    align-items: center;
+}
+
+.status-indicator {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    font-size: 11px;
+}
+
+.status-dot {
+    width: 8px;
+    height: 8px;
+    border-radius: 50%;
+    background: var(--text-dim);
+}
+
+.status-dot.active {
+    background: var(--accent-green);
+    animation: pulse-dot 2s ease-in-out infinite;
+}
+
+.status-dot.error {
+    background: var(--accent-red);
+}
+
+@keyframes pulse-dot {
+    0%, 100% { opacity: 1; }
+    50% { opacity: 0.5; }
+}
+
+/* Stats strip */
+.stats-strip {
+    position: fixed;
+    top: 60px;
+    left: 0;
+    right: 0;
+    height: 50px;
+    background: var(--bg-panel);
+    border-bottom: 1px solid var(--border-color);
+    display: flex;
+    gap: 20px;
+    padding: 0 20px;
+    align-items: center;
+    z-index: 99;
+}
+
+.strip-stat {
+    display: flex;
+    flex-direction: column;
+    align-items: center;
+}
+
+.strip-value {
+    font-size: 20px;
+    font-weight: 700;
+    color: var(--accent-green);
+    line-height: 1.2;
+}
+
+.strip-label {
+    font-size: 9px;
+    color: var(--text-secondary);
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+}
+
+/* Dashboard layout */
+.dashboard {
+    position: fixed;
+    top: 110px;
+    bottom: 80px;
+    left: 0;
+    right: 0;
+    display: grid;
+    grid-template-columns: 280px 1fr 300px;
+    gap: 10px;
+    padding: 10px;
+}
+
+/* Sidebar panels */
+.left-sidebar, .right-sidebar {
+    display: flex;
+    flex-direction: column;
+    gap: 10px;
+    overflow-y: auto;
+}
+
+.panel {
+    background: var(--bg-panel);
+    border: 1px solid var(--border-color);
+    border-radius: 4px;
+    overflow: hidden;
+    display: flex;
+    flex-direction: column;
+}
+
+.panel-header {
+    padding: 10px 12px;
+    font-size: 11px;
+    font-weight: 700;
+    border-bottom: 1px solid var(--border-color);
+    color: var(--accent-cyan);
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+}
+
+.panel-content {
+    padding: 12px;
+}
+
+/* Signal source panel */
+.signal-source select,
+.region-selector select {
+    width: 100%;
+    background: var(--bg-dark);
+    color: var(--text-primary);
+    border: 1px solid var(--border-color);
+    border-radius: 3px;
+    padding: 8px;
+    font-family: var(--font-mono);
+    font-size: 11px;
+}
+
+.region-selector {
+    margin-top: 10px;
+}
+
+.region-selector label {
+    display: block;
+    margin-bottom: 5px;
+    font-size: 10px;
+    color: var(--text-secondary);
+}
+
+.band-info {
+    margin-top: 8px;
+    padding: 8px;
+    background: var(--bg-dark);
+    border-radius: 3px;
+    font-size: 10px;
+    color: var(--text-secondary);
+}
+
+/* Selected tower info */
+.selected-info {
+    padding: 12px;
+    font-size: 11px;
+}
+
+.selected-info.empty {
+    color: var(--text-dim);
+    text-align: center;
+    padding: 20px;
+}
+
+.selected-info > div {
+    margin-bottom: 8px;
+}
+
+.selected-info strong {
+    color: var(--accent-cyan);
+}
+
+/* Tower and device lists */
+.tower-list, .device-list, .alert-list {
+    max-height: 300px;
+    overflow-y: auto;
+}
+
+.tower-item, .device-item, .alert-item {
+    padding: 10px 12px;
+    border-bottom: 1px solid var(--border-color);
+    cursor: pointer;
+    transition: background 0.2s;
+    font-size: 11px;
+}
+
+.tower-item:hover, .device-item:hover {
+    background: var(--bg-panel-hover);
+}
+
+.tower-item:last-child, .device-item:last-child, .alert-item:last-child {
+    border-bottom: none;
+}
+
+.tower-item.rogue {
+    border-left: 3px solid var(--accent-red);
+}
+
+.tower-item-header {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    margin-bottom: 5px;
+}
+
+.tower-cid {
+    font-weight: 700;
+    color: var(--accent-cyan);
+}
+
+.tower-signal {
+    font-size: 10px;
+    color: var(--text-secondary);
+}
+
+.tower-operator {
+    font-size: 10px;
+    color: var(--text-dim);
+}
+
+.device-item-id {
+    font-weight: 700;
+    color: var(--accent-green);
+    margin-bottom: 5px;
+}
+
+.device-ta {
+    font-size: 10px;
+    color: var(--text-secondary);
+}
+
+.alert-item {
+    background: rgba(226, 93, 93, 0.1);
+    border-left: 3px solid var(--accent-red);
+    cursor: default;
+}
+
+.alert-item strong {
+    color: var(--accent-red);
+}
+
+.alert-item small {
+    display: block;
+    margin-top: 5px;
+    color: var(--text-dim);
+    font-size: 9px;
+}
+
+/* Map container */
+.map-container {
+    position: relative;
+    border: 1px solid var(--border-color);
+    border-radius: 4px;
+    overflow: hidden;
+}
+
+#gsmMap {
+    width: 100%;
+    height: 100%;
+    background: var(--bg-dark);
+}
+
+/* Map markers */
+.tower-marker {
+    width: 20px;
+    height: 20px;
+    border-radius: 50%;
+    background: var(--accent-green);
+    border: 2px solid white;
+    box-shadow: 0 0 8px rgba(56, 195, 128, 0.6);
+}
+
+.tower-marker.rogue {
+    background: var(--accent-red);
+    box-shadow: 0 0 8px rgba(226, 93, 93, 0.8);
+    animation: blink 1s infinite;
+}
+
+@keyframes blink {
+    0%, 50% { opacity: 1; }
+    51%, 100% { opacity: 0.3; }
+}
+
+.device-blip {
+    animation: pulse-blip 5s ease-out forwards;
+}
+
+@keyframes pulse-blip {
+    0% {
+        opacity: 1;
+        transform: scale(1);
+    }
+    100% {
+        opacity: 0;
+        transform: scale(3);
+    }
+}
+
+/* Controls bar */
+.controls-bar {
+    position: fixed;
+    bottom: 0;
+    left: 0;
+    right: 0;
+    height: 80px;
+    background: var(--bg-panel);
+    border-top: 1px solid var(--border-color);
+    display: flex;
+    gap: 20px;
+    padding: 15px 20px;
+    align-items: center;
+    z-index: 99;
+}
+
+.control-group {
+    display: flex;
+    flex-direction: column;
+    gap: 5px;
+}
+
+.control-group-label {
+    font-size: 9px;
+    color: var(--text-secondary);
+    font-weight: 600;
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+}
+
+.control-group-items {
+    display: flex;
+    gap: 10px;
+    align-items: center;
+}
+
+/* Input fields */
+input[type="text"], input[type="number"], select {
+    background: var(--bg-dark);
+    color: var(--text-primary);
+    border: 1px solid var(--border-color);
+    border-radius: 3px;
+    padding: 8px 10px;
+    font-family: var(--font-mono);
+    font-size: 11px;
+    min-width: 120px;
+}
+
+input[type="text"]:focus, input[type="number"]:focus, select:focus {
+    outline: none;
+    border-color: var(--accent-cyan);
+}
+
+/* Buttons */
+button {
+    background: var(--accent-cyan);
+    color: white;
+    border: none;
+    padding: 8px 16px;
+    border-radius: 4px;
+    cursor: pointer;
+    font-family: var(--font-mono);
+    font-size: 12px;
+    font-weight: 600;
+    transition: all 0.2s;
+    text-transform: uppercase;
+    letter-spacing: 0.5px;
+}
+
+button:hover {
+    opacity: 0.8;
+    transform: translateY(-1px);
+}
+
+button:active {
+    transform: translateY(0);
+}
+
+button.active {
+    background: var(--accent-red);
+    animation: pulse-btn 2s ease-in-out infinite;
+}
+
+@keyframes pulse-btn {
+    0%, 100% { box-shadow: 0 0 0 0 rgba(226, 93, 93, 0.7); }
+    50% { box-shadow: 0 0 0 10px rgba(226, 93, 93, 0); }
+}
+
+button:disabled {
+    background: var(--text-dim);
+    cursor: not-allowed;
+    opacity: 0.5;
+}
+
+/* GPS indicator */
+.gps-indicator {
+    display: inline-flex;
+    align-items: center;
+    gap: 5px;
+    padding: 6px 12px;
+    background: var(--bg-dark);
+    border: 1px solid var(--border-color);
+    border-radius: 3px;
+    font-size: 10px;
+    color: var(--text-secondary);
+}
+
+.gps-indicator::before {
+    content: '';
+    width: 6px;
+    height: 6px;
+    border-radius: 50%;
+    background: var(--text-dim);
+}
+
+.gps-indicator.active::before {
+    background: var(--accent-green);
+    animation: pulse-dot 2s ease-in-out infinite;
+}
+
+/* Scrollbar styling */
+::-webkit-scrollbar {
+    width: 8px;
+    height: 8px;
+}
+
+::-webkit-scrollbar-track {
+    background: var(--bg-dark);
+}
+
+::-webkit-scrollbar-thumb {
+    background: var(--border-color);
+    border-radius: 4px;
+}
+
+::-webkit-scrollbar-thumb:hover {
+    background: var(--text-dim);
+}
+
+/* Empty state */
+.empty-state {
+    padding: 30px 20px;
+    text-align: center;
+    color: var(--text-dim);
+    font-size: 11px;
+}
+
+/* Responsive adjustments */
+@media (max-width: 1400px) {
+    .dashboard {
+        grid-template-columns: 250px 1fr 280px;
+    }
+}
+
+@media (max-width: 1024px) {
+    .dashboard {
+        grid-template-columns: 1fr;
+        grid-template-rows: auto 1fr auto;
+    }
+
+    .left-sidebar, .right-sidebar {
+        flex-direction: row;
+        overflow-x: auto;
+        overflow-y: visible;
+    }
+
+    .panel {
+        min-width: 250px;
+    }
+}
+
+/* Utility classes */
+.text-success { color: var(--accent-green); }
+.text-danger { color: var(--accent-red); }
+.text-warning { color: var(--accent-yellow); }
+.text-info { color: var(--accent-cyan); }
+.text-muted { color: var(--text-secondary); }
+
+.mt-1 { margin-top: 8px; }
+.mt-2 { margin-top: 16px; }
+.mb-1 { margin-bottom: 8px; }
+.mb-2 { margin-bottom: 16px; }
+
+/* Advanced Analysis Results Panel */
+.analysis-results {
+    border-top: 1px solid var(--border-color);
+    padding: 12px;
+    max-height: 300px;
+    overflow-y: auto;
+}
+
+.analysis-header {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    margin-bottom: 10px;
+    font-size: 11px;
+    font-weight: 700;
+    color: var(--accent-cyan);
+    text-transform: uppercase;
+}
+
+.analysis-content {
+    font-size: 10px;
+    line-height: 1.6;
+}
+
+.analysis-stat {
+    display: flex;
+    justify-content: space-between;
+    padding: 6px 0;
+    border-bottom: 1px solid rgba(255,255,255,0.05);
+}
+
+.analysis-stat:last-child {
+    border-bottom: none;
+}
+
+.analysis-stat-label {
+    color: var(--text-secondary);
+}
+
+.analysis-stat-value {
+    color: var(--accent-green);
+    font-weight: 600;
+}
+
+.analysis-device-item {
+    padding: 8px;
+    margin: 6px 0;
+    background: var(--bg-dark);
+    border-radius: 3px;
+    border-left: 3px solid var(--accent-cyan);
+}
+
+.analysis-warning {
+    color: var(--accent-yellow);
+    font-size: 10px;
+    padding: 8px;
+    background: rgba(255, 165, 0, 0.1);
+    border-radius: 3px;
+    margin-top: 8px;
+}
diff --git a/templates/gsm_spy_dashboard.html b/templates/gsm_spy_dashboard.html
new file mode 100644
index 0000000..19343b0
--- /dev/null
+++ b/templates/gsm_spy_dashboard.html
@@ -0,0 +1,2194 @@
+<!DOCTYPE html>
+<html lang="en">
+<head>
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1.0">
+    <title>GSM SPY // INTERCEPT - See the Invisible</title>
+    <!-- Fonts - Conditional CDN/Local loading -->
+    {% if offline_settings.fonts_source == 'local' %}
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/fonts-local.css') }}">
+    {% else %}
+    <link href="https://fonts.googleapis.com/css2?family=JetBrains+Mono:wght@400;500;600;700&display=swap" rel="stylesheet">
+    {% endif %}
+    <!-- Leaflet.js - Conditional CDN/Local loading -->
+    {% if offline_settings.assets_source == 'local' %}
+    <link rel="stylesheet" href="{{ url_for('static', filename='vendor/leaflet/leaflet.css') }}">
+    <script src="{{ url_for('static', filename='vendor/leaflet/leaflet.js') }}"></script>
+    {% else %}
+    <link rel="stylesheet" href="https://unpkg.com/leaflet@1.9.4/dist/leaflet.css" />
+    <script src="https://unpkg.com/leaflet@1.9.4/dist/leaflet.js"></script>
+    {% endif %}
+    <!-- Core CSS variables -->
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/core/variables.css') }}">
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/responsive.css') }}">
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/global-nav.css') }}">
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/settings.css') }}">
+    <link rel="stylesheet" href="{{ url_for('static', filename='css/help-modal.css') }}">
+    <script>
+        window.INTERCEPT_SHARED_OBSERVER_LOCATION = {{ shared_observer_location | tojson }};
+    </script>
+    <script src="{{ url_for('static', filename='js/core/observer-location.js') }}"></script>
+    <style>
+        * {
+            margin: 0;
+            padding: 0;
+            box-sizing: border-box;
+        }
+
+        :root {
+            --font-sans: 'IBM Plex Mono', 'JetBrains Mono', ui-monospace, 'SF Mono', 'Consolas', 'Menlo', monospace;
+            --font-mono: 'IBM Plex Mono', 'JetBrains Mono', ui-monospace, 'SF Mono', 'Consolas', 'Menlo', monospace;
+            --bg-dark: #0b1118;
+            --bg-panel: #101823;
+            --bg-card: #151f2b;
+            --border-color: #263246;
+            --border-glow: #4aa3ff;
+            --text-primary: #d7e0ee;
+            --text-secondary: #9fb0c7;
+            --text-muted: #9fb0c7;
+            --text-dim: #6f7f94;
+            --accent-green: #38c180;
+            --accent-cyan: #4aa3ff;
+            --accent-orange: #d6a85e;
+            --accent-red: #e25d5d;
+            --accent-yellow: #e1c26b;
+            --grid-line: rgba(74, 163, 255, 0.1);
+            --noise-image: url("data:image/svg+xml,%3Csvg%20xmlns='http://www.w3.org/2000/svg'%20width='40'%20height='40'%20viewBox='0%200%2040%2040'%3E%3Cg%20fill='%23ffffff'%20fill-opacity='0.05'%3E%3Ccircle%20cx='3'%20cy='5'%20r='1'/%3E%3Ccircle%20cx='11'%20cy='9'%20r='1'/%3E%3Ccircle%20cx='18'%20cy='3'%20r='1'/%3E%3Ccircle%20cx='26'%20cy='12'%20r='1'/%3E%3Ccircle%20cx='34'%20cy='6'%20r='1'/%3E%3Ccircle%20cx='7'%20cy='19'%20r='1'/%3E%3Ccircle%20cx='15'%20cy='24'%20r='1'/%3E%3Ccircle%20cx='28'%20cy='22'%20r='1'/%3E%3Ccircle%20cx='36'%20cy='18'%20r='1'/%3E%3Ccircle%20cx='5'%20cy='33'%20r='1'/%3E%3Ccircle%20cx='19'%20cy='32'%20r='1'/%3E%3Ccircle%20cx='31'%20cy='34'%20r='1'/%3E%3C/g%3E%3C/svg%3E");
+        }
+
+        body {
+            font-family: var(--font-sans);
+            background: var(--bg-dark);
+            color: var(--text-primary);
+            min-height: 100vh;
+            overflow-x: hidden;
+        }
+
+        /* Animated radar sweep background */
+        .radar-bg {
+            position: fixed;
+            top: 0;
+            left: 0;
+            right: 0;
+            bottom: 0;
+            background-image:
+                var(--noise-image),
+                linear-gradient(var(--grid-line) 1px, transparent 1px),
+                linear-gradient(90deg, var(--grid-line) 1px, transparent 1px);
+            background-size: 40px 40px, 50px 50px, 50px 50px;
+            pointer-events: none;
+            z-index: 0;
+        }
+
+        /* Scan line effect */
+        .scanline {
+            position: fixed;
+            top: 0;
+            left: 0;
+            right: 0;
+            height: 2px;
+            background: linear-gradient(90deg, transparent, var(--accent-cyan), transparent);
+            color: var(--accent-cyan);
+            animation: scan 6s linear infinite;
+            pointer-events: none;
+            z-index: 1000;
+            opacity: 0.25;
+            box-shadow: 0 0 8px currentColor;
+        }
+
+        @keyframes scan {
+            0% { top: -4px; }
+            100% { top: 100vh; }
+        }
+
+        /* Header */
+        .header {
+            position: relative;
+            z-index: 10;
+            padding: 10px 12px;
+            background: var(--bg-panel);
+            border-bottom: 1px solid var(--border-color);
+            display: flex;
+            justify-content: space-between;
+            align-items: center;
+            gap: 12px;
+            min-height: 52px;
+        }
+
+        .header::after {
+            content: '';
+            position: absolute;
+            left: 0;
+            right: 0;
+            bottom: 0;
+            height: 2px;
+            background: linear-gradient(90deg, transparent, var(--accent-cyan), transparent);
+            opacity: 0.6;
+            pointer-events: none;
+        }
+
+        .logo {
+            font-family: var(--font-sans);
+            font-size: 16px;
+            font-weight: 700;
+            letter-spacing: 2px;
+            color: var(--text-primary);
+            text-transform: uppercase;
+        }
+
+        .logo span {
+            color: var(--text-secondary);
+            font-weight: 400;
+            font-size: 12px;
+            margin-left: 10px;
+            letter-spacing: 1px;
+        }
+
+        .status-bar {
+            display: flex;
+            gap: 12px;
+            align-items: center;
+            font-family: var(--font-mono);
+            font-size: 11px;
+        }
+
+        .status-dot {
+            width: 8px;
+            height: 8px;
+            border-radius: 50%;
+            background: var(--accent-cyan);
+            box-shadow: 0 0 10px var(--accent-cyan);
+            animation: pulse 2s ease-in-out infinite;
+        }
+
+        .status-dot.inactive {
+            background: var(--accent-red);
+            box-shadow: 0 0 10px var(--accent-red);
+        }
+
+        @keyframes pulse {
+            0%, 100% { opacity: 1; }
+            50% { opacity: 0.5; }
+        }
+
+        /* Stats Strip */
+        .stats-strip {
+            position: relative;
+            z-index: 10;
+            background: var(--bg-panel);
+            border-bottom: 1px solid var(--border-color);
+            padding: 8px 12px;
+            overflow-x: auto;
+        }
+
+        .stats-strip-inner {
+            display: flex;
+            gap: 16px;
+            align-items: center;
+            min-width: fit-content;
+        }
+
+        .strip-stat {
+            display: flex;
+            flex-direction: column;
+            gap: 2px;
+            min-width: 50px;
+        }
+
+        .strip-value {
+            font-size: 14px;
+            font-weight: 700;
+            color: var(--accent-cyan);
+            font-family: var(--font-mono);
+        }
+
+        .strip-label {
+            font-size: 9px;
+            color: var(--text-dim);
+            letter-spacing: 0.5px;
+            font-family: var(--font-mono);
+        }
+
+        .strip-divider {
+            width: 1px;
+            height: 30px;
+            background: var(--border-color);
+        }
+
+        .strip-status {
+            display: flex;
+            align-items: center;
+            gap: 6px;
+            font-size: 10px;
+            color: var(--text-secondary);
+        }
+
+        .strip-time {
+            font-size: 11px;
+            color: var(--accent-cyan);
+            font-family: var(--font-mono);
+        }
+
+        .strip-btn {
+            padding: 6px 12px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-secondary);
+            font-size: 10px;
+            font-family: var(--font-mono);
+            cursor: pointer;
+            transition: all 0.2s;
+            text-transform: uppercase;
+            letter-spacing: 0.5px;
+            font-weight: 600;
+        }
+
+        .strip-btn:hover {
+            background: var(--bg-panel);
+            border-color: var(--accent-cyan);
+            color: var(--accent-cyan);
+        }
+
+        /* Analytics Overview Modal */
+        .analytics-modal-overlay {
+            display: none;
+            position: fixed;
+            top: 0;
+            left: 0;
+            right: 0;
+            bottom: 0;
+            background: rgba(11, 17, 24, 0.95);
+            backdrop-filter: blur(4px);
+            z-index: 1000;
+            animation: fadeIn 0.2s ease-out;
+        }
+
+        .analytics-modal-overlay.active {
+            display: flex;
+            justify-content: center;
+            align-items: center;
+            padding: 20px;
+        }
+
+        @keyframes fadeIn {
+            from { opacity: 0; }
+            to { opacity: 1; }
+        }
+
+        .analytics-modal {
+            background: var(--bg-panel);
+            border: 1px solid var(--border-color);
+            border-radius: 8px;
+            max-width: 1200px;
+            width: 100%;
+            max-height: 90vh;
+            overflow: hidden;
+            display: flex;
+            flex-direction: column;
+            box-shadow: 0 0 40px rgba(74, 163, 255, 0.3);
+            animation: slideUp 0.3s ease-out;
+        }
+
+        @keyframes slideUp {
+            from {
+                opacity: 0;
+                transform: translateY(20px);
+            }
+            to {
+                opacity: 1;
+                transform: translateY(0);
+            }
+        }
+
+        .analytics-modal-header {
+            padding: 16px 20px;
+            background: var(--bg-card);
+            border-bottom: 1px solid var(--border-color);
+            display: flex;
+            justify-content: space-between;
+            align-items: center;
+        }
+
+        .analytics-modal-title {
+            font-size: 16px;
+            font-weight: 700;
+            letter-spacing: 1px;
+            color: var(--accent-cyan);
+            text-transform: uppercase;
+        }
+
+        .analytics-modal-close {
+            width: 32px;
+            height: 32px;
+            border: 1px solid var(--border-color);
+            background: var(--bg-dark);
+            color: var(--text-secondary);
+            border-radius: 4px;
+            cursor: pointer;
+            transition: all 0.2s;
+            font-size: 18px;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+        }
+
+        .analytics-modal-close:hover {
+            border-color: var(--accent-red);
+            color: var(--accent-red);
+        }
+
+        .analytics-modal-content {
+            padding: 20px;
+            overflow-y: auto;
+            flex: 1;
+        }
+
+        .analytics-grid {
+            display: grid;
+            grid-template-columns: repeat(auto-fit, minmax(300px, 1fr));
+            gap: 16px;
+        }
+
+        .analytics-card {
+            background: var(--bg-card);
+            border: 1px solid var(--border-color);
+            border-radius: 6px;
+            padding: 16px;
+            transition: all 0.2s;
+        }
+
+        .analytics-card:hover {
+            border-color: var(--accent-cyan);
+            box-shadow: 0 0 16px rgba(74, 163, 255, 0.2);
+        }
+
+        .analytics-card-header {
+            display: flex;
+            align-items: center;
+            gap: 10px;
+            margin-bottom: 12px;
+        }
+
+        .analytics-card-icon {
+            width: 32px;
+            height: 32px;
+            background: var(--accent-cyan);
+            border-radius: 4px;
+            display: flex;
+            align-items: center;
+            justify-content: center;
+            font-size: 16px;
+            flex-shrink: 0;
+        }
+
+        .analytics-card-title {
+            font-size: 13px;
+            font-weight: 600;
+            color: var(--text-primary);
+            text-transform: uppercase;
+            letter-spacing: 0.5px;
+        }
+
+        .analytics-card-description {
+            font-size: 11px;
+            line-height: 1.6;
+            color: var(--text-secondary);
+            margin-bottom: 12px;
+        }
+
+        .analytics-card-stats {
+            display: flex;
+            gap: 12px;
+            margin-top: 12px;
+            padding-top: 12px;
+            border-top: 1px solid var(--border-color);
+        }
+
+        .analytics-card-stat {
+            flex: 1;
+        }
+
+        .analytics-card-stat-value {
+            font-size: 18px;
+            font-weight: 700;
+            color: var(--accent-green);
+            font-family: var(--font-mono);
+        }
+
+        .analytics-card-stat-label {
+            font-size: 9px;
+            color: var(--text-dim);
+            text-transform: uppercase;
+            letter-spacing: 0.5px;
+        }
+
+        /* Main Dashboard Layout */
+        .dashboard {
+            position: relative;
+            z-index: 10;
+            display: grid;
+            grid-template-columns: 280px 1fr 300px;
+            grid-template-rows: 1fr auto;
+            gap: 0;
+            height: calc(100vh - 160px);
+            min-height: 500px;
+        }
+
+        /* Left Sidebar */
+        .left-sidebar {
+            background: var(--bg-panel);
+            border-right: 1px solid var(--border-color);
+            display: flex;
+            flex-direction: column;
+            gap: 0;
+            overflow-y: auto;
+            grid-row: 1;
+        }
+
+        /* Main Display (Map) */
+        .main-display {
+            position: relative;
+            grid-row: 1;
+            background: var(--bg-dark);
+        }
+
+        #gsmMap {
+            width: 100%;
+            height: 100%;
+            background: var(--bg-dark);
+        }
+
+        /* Right Sidebar */
+        .right-sidebar {
+            background: var(--bg-panel);
+            border-left: 1px solid var(--border-color);
+            display: flex;
+            flex-direction: column;
+            gap: 0;
+            overflow-y: auto;
+            grid-row: 1;
+        }
+
+        /* Panel Styles */
+        .panel {
+            background: var(--bg-card);
+            border-bottom: 1px solid var(--border-color);
+        }
+
+        .panel-header {
+            padding: 10px 12px;
+            background: var(--bg-panel);
+            border-bottom: 1px solid var(--border-color);
+            display: flex;
+            justify-content: space-between;
+            align-items: center;
+            font-size: 11px;
+            font-weight: 600;
+            letter-spacing: 1px;
+            color: var(--text-secondary);
+        }
+
+        .panel-indicator {
+            width: 8px;
+            height: 8px;
+            border-radius: 50%;
+            background: var(--accent-cyan);
+            box-shadow: 0 0 8px var(--accent-cyan);
+        }
+
+        .panel-content {
+            padding: 12px;
+            font-size: 11px;
+            max-height: 300px;
+            overflow-y: auto;
+        }
+
+        /* Signal Source Panel */
+        .signal-source-panel {
+            flex-shrink: 0;
+        }
+
+        .signal-source-content {
+            padding: 12px;
+        }
+
+        .form-group {
+            margin-bottom: 12px;
+        }
+
+        .form-group label {
+            display: block;
+            font-size: 10px;
+            color: var(--text-secondary);
+            margin-bottom: 6px;
+            text-transform: uppercase;
+            letter-spacing: 0.5px;
+        }
+
+        .form-group select {
+            width: 100%;
+            padding: 8px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-primary);
+            font-size: 11px;
+            font-family: var(--font-mono);
+        }
+
+        /* Region Selector Panel */
+        .region-panel {
+            flex-shrink: 0;
+        }
+
+        .region-buttons {
+            display: flex;
+            flex-direction: column;
+            gap: 8px;
+            padding: 12px;
+        }
+
+        .region-btn {
+            padding: 10px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-secondary);
+            font-size: 11px;
+            font-family: var(--font-mono);
+            cursor: pointer;
+            transition: all 0.2s;
+        }
+
+        .region-btn:hover {
+            background: var(--bg-panel);
+            border-color: var(--accent-cyan);
+        }
+
+        .region-btn.active {
+            background: var(--accent-cyan);
+            color: var(--bg-dark);
+            border-color: var(--accent-cyan);
+            font-weight: 600;
+        }
+
+        /* Advanced Analysis Panel - Same style as Region Buttons */
+        .advanced-analysis-panel {
+            flex-shrink: 0;
+        }
+
+        .analysis-buttons {
+            display: flex;
+            flex-direction: column;
+            gap: 8px;
+            padding: 12px;
+        }
+
+        .analysis-btn {
+            padding: 10px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-secondary);
+            font-size: 11px;
+            font-family: var(--font-mono);
+            cursor: pointer;
+            transition: all 0.2s;
+        }
+
+        .analysis-btn:hover {
+            background: var(--bg-panel);
+            border-color: var(--accent-cyan);
+        }
+
+        .analysis-btn.active {
+            background: var(--accent-cyan);
+            color: var(--bg-dark);
+            border-color: var(--accent-cyan);
+            font-weight: 600;
+        }
+
+        /* Selected Tower Panel */
+        .selected-tower-panel {
+            flex-shrink: 0;
+            min-height: 200px;
+        }
+
+        .no-selection {
+            padding: 30px 20px;
+            text-align: center;
+            color: var(--text-dim);
+            font-size: 11px;
+        }
+
+        .tower-info {
+            padding: 12px;
+            font-size: 11px;
+            line-height: 1.6;
+        }
+
+        .tower-info-row {
+            display: flex;
+            justify-content: space-between;
+            padding: 6px 0;
+            border-bottom: 1px solid var(--border-color);
+        }
+
+        .tower-info-row:last-child {
+            border-bottom: none;
+        }
+
+        .tower-info-label {
+            color: var(--text-dim);
+            text-transform: uppercase;
+            font-size: 9px;
+            letter-spacing: 0.5px;
+        }
+
+        .tower-info-value {
+            color: var(--accent-cyan);
+            font-family: var(--font-mono);
+            font-weight: 600;
+        }
+
+        .tower-rogue-badge {
+            display: inline-block;
+            padding: 2px 6px;
+            background: var(--accent-red);
+            color: white;
+            border-radius: 3px;
+            font-size: 9px;
+            font-weight: 700;
+            letter-spacing: 0.5px;
+        }
+
+        /* Tracked Lists */
+        .tracked-list {
+            flex: 1;
+            overflow-y: auto;
+        }
+
+        .tracked-list-content {
+            max-height: 400px;
+            overflow-y: auto;
+        }
+
+        .list-item {
+            padding: 10px 12px;
+            border-bottom: 1px solid var(--border-color);
+            cursor: pointer;
+            transition: background 0.2s;
+            font-size: 11px;
+        }
+
+        .list-item:hover {
+            background: var(--bg-panel);
+        }
+
+        .list-item.selected {
+            background: rgba(74, 163, 255, 0.1);
+            border-left: 3px solid var(--accent-cyan);
+        }
+
+        .list-item-header {
+            display: flex;
+            justify-content: space-between;
+            align-items: center;
+            margin-bottom: 4px;
+        }
+
+        .list-item-id {
+            font-weight: 700;
+            color: var(--accent-cyan);
+            font-family: var(--font-mono);
+        }
+
+        .list-item-meta {
+            font-size: 9px;
+            color: var(--text-dim);
+        }
+
+        .list-item-details {
+            font-size: 10px;
+            color: var(--text-secondary);
+            line-height: 1.4;
+        }
+
+        .rogue-indicator {
+            display: inline-block;
+            width: 8px;
+            height: 8px;
+            border-radius: 50%;
+            background: var(--accent-red);
+            box-shadow: 0 0 6px var(--accent-red);
+            animation: blink 1s infinite;
+            margin-left: 6px;
+        }
+
+        @keyframes blink {
+            0%, 50% { opacity: 1; }
+            51%, 100% { opacity: 0.3; }
+        }
+
+        .no-data {
+            padding: 30px 20px;
+            text-align: center;
+            color: var(--text-dim);
+            font-size: 11px;
+        }
+
+        /* Alerts Panel */
+        .alerts-panel {
+            flex-shrink: 0;
+            max-height: 250px;
+        }
+
+        .alert-item {
+            padding: 10px 12px;
+            border-bottom: 1px solid var(--border-color);
+            background: rgba(226, 93, 93, 0.05);
+            border-left: 3px solid var(--accent-red);
+            font-size: 10px;
+            line-height: 1.5;
+        }
+
+        .alert-time {
+            color: var(--text-dim);
+            font-size: 9px;
+            margin-bottom: 4px;
+        }
+
+        .alert-message {
+            color: var(--accent-red);
+            font-weight: 600;
+        }
+
+        /* Controls Bar */
+        .controls-bar {
+            grid-column: 1 / -1;
+            grid-row: 2;
+            background: var(--bg-panel);
+            border-top: 1px solid var(--border-color);
+            padding: 12px;
+            display: flex;
+            gap: 20px;
+            align-items: center;
+            flex-wrap: wrap;
+        }
+
+        .control-group {
+            display: flex;
+            align-items: center;
+            gap: 10px;
+        }
+
+        .control-group-label {
+            font-size: 9px;
+            color: var(--text-dim);
+            letter-spacing: 1px;
+            text-transform: uppercase;
+            margin-right: 6px;
+        }
+
+        .control-group-items {
+            display: flex;
+            align-items: center;
+            gap: 8px;
+        }
+
+        .control-group input[type="text"],
+        .control-group input[type="number"] {
+            padding: 6px 8px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-primary);
+            font-size: 11px;
+            font-family: var(--font-mono);
+        }
+
+        .control-group select {
+            padding: 6px 8px;
+            background: var(--bg-dark);
+            border: 1px solid var(--border-color);
+            border-radius: 4px;
+            color: var(--text-primary);
+            font-size: 11px;
+            font-family: var(--font-mono);
+        }
+
+        .start-btn {
+            padding: 8px 20px;
+            background: var(--accent-green);
+            border: none;
+            border-radius: 4px;
+            color: white;
+            font-size: 11px;
+            font-weight: 700;
+            font-family: var(--font-mono);
+            cursor: pointer;
+            transition: all 0.2s;
+            text-transform: uppercase;
+            letter-spacing: 1px;
+        }
+
+        .start-btn:hover {
+            background: #2da868;
+            box-shadow: 0 0 12px var(--accent-green);
+        }
+
+        .start-btn.active {
+            background: var(--accent-red);
+            animation: pulse-btn 2s infinite;
+        }
+
+        .start-btn.active:hover {
+            background: #c94545;
+        }
+
+        @keyframes pulse-btn {
+            0%, 100% { box-shadow: 0 0 8px var(--accent-red); }
+            50% { box-shadow: 0 0 20px var(--accent-red); }
+        }
+
+        .gps-indicator {
+            display: flex;
+            align-items: center;
+            gap: 6px;
+            font-size: 10px;
+            color: var(--accent-green);
+        }
+
+        .gps-dot {
+            width: 8px;
+            height: 8px;
+            border-radius: 50%;
+            background: var(--accent-green);
+            box-shadow: 0 0 8px var(--accent-green);
+            animation: pulse 2s infinite;
+        }
+
+        /* Map marker animations */
+        @keyframes marker-pulse {
+            0%, 100% {
+                transform: scale(1);
+                opacity: 1;
+            }
+            50% {
+                transform: scale(1.5);
+                opacity: 0.3;
+            }
+        }
+
+        /* Device blip pulse animation */
+        .device-blip {
+            animation: device-pulse 5s ease-out forwards;
+        }
+
+        @keyframes device-pulse {
+            0% {
+                transform: scale(1);
+                opacity: 1;
+            }
+            100% {
+                transform: scale(3);
+                opacity: 0;
+            }
+        }
+
+        /* Custom Leaflet marker styles */
+        .tower-marker {
+            width: 20px;
+            height: 20px;
+            border-radius: 50%;
+            border: 2px solid var(--accent-green);
+            background: rgba(56, 193, 128, 0.3);
+            box-shadow: 0 0 10px var(--accent-green);
+        }
+
+        .tower-marker.rogue {
+            border-color: var(--accent-red);
+            background: rgba(226, 93, 93, 0.3);
+            box-shadow: 0 0 10px var(--accent-red);
+            animation: blink 1s infinite;
+        }
+
+        .device-marker {
+            width: 10px;
+            height: 10px;
+            border-radius: 50%;
+            background: var(--accent-red);
+            box-shadow: 0 0 8px var(--accent-red);
+        }
+
+        /* Scrollbar styling */
+        .tracked-list-content::-webkit-scrollbar,
+        .panel-content::-webkit-scrollbar {
+            width: 6px;
+        }
+
+        .tracked-list-content::-webkit-scrollbar-track,
+        .panel-content::-webkit-scrollbar-track {
+            background: var(--bg-dark);
+        }
+
+        .tracked-list-content::-webkit-scrollbar-thumb,
+        .panel-content::-webkit-scrollbar-thumb {
+            background: var(--border-color);
+            border-radius: 3px;
+        }
+
+        .tracked-list-content::-webkit-scrollbar-thumb:hover,
+        .panel-content::-webkit-scrollbar-thumb:hover {
+            background: var(--accent-cyan);
+        }
+
+        /* Responsive adjustments */
+        @media (max-width: 1400px) {
+            .dashboard {
+                grid-template-columns: 250px 1fr 280px;
+            }
+        }
+
+        @media (max-width: 1024px) {
+            .dashboard {
+                grid-template-columns: 1fr;
+                grid-template-rows: auto 1fr auto;
+            }
+
+            .left-sidebar,
+            .right-sidebar {
+                display: none;
+            }
+        }
+    </style>
+</head>
+<body>
+    <div class="radar-bg"></div>
+    <div class="scanline"></div>
+
+    <header class="header">
+        <div class="logo">
+            GSM SPY
+            <span>// INTERCEPT - See the Invisible</span>
+        </div>
+        <div class="status-bar">
+            <div class="status-dot inactive" id="scannerDot"></div>
+            <span id="scannerStatus">STANDBY</span>
+        </div>
+    </header>
+
+    {% set active_mode = 'gsm' %}
+    {% include 'partials/nav.html' with context %}
+
+    <!-- Statistics Strip -->
+    <div class="stats-strip">
+        <div class="stats-strip-inner">
+            <div class="strip-stat">
+                <span class="strip-value" id="stripTowers">0</span>
+                <span class="strip-label">TOWERS</span>
+            </div>
+            <div class="strip-stat">
+                <span class="strip-value" id="stripDevices">0</span>
+                <span class="strip-label">DEVICES</span>
+            </div>
+            <div class="strip-stat">
+                <span class="strip-value" id="stripRogues">0</span>
+                <span class="strip-label">ROGUES</span>
+            </div>
+            <div class="strip-stat">
+                <span class="strip-value" id="stripSignals">0</span>
+                <span class="strip-label">SIGNALS</span>
+            </div>
+            <div class="strip-stat">
+                <span class="strip-value" id="stripCrowd">-</span>
+                <span class="strip-label">CROWD</span>
+            </div>
+            <div class="strip-divider"></div>
+            <div class="strip-status">
+                <div class="status-dot inactive" id="trackingDot"></div>
+                <span id="trackingStatus">STANDBY</span>
+            </div>
+            <div class="strip-time" id="utcTime">--:--:-- UTC</div>
+            <button class="strip-btn" onclick="openAnalyticsModal()">
+                Analytics Overview
+            </button>
+        </div>
+    </div>
+
+    <!-- Analytics Overview Modal -->
+    <div class="analytics-modal-overlay" id="analyticsModal">
+        <div class="analytics-modal">
+            <div class="analytics-modal-header">
+                <div class="analytics-modal-title">Analytics Overview</div>
+                <button class="analytics-modal-close" onclick="closeAnalyticsModal()">&times;</button>
+            </div>
+            <div class="analytics-modal-content">
+                <div class="analytics-grid">
+                    <!-- Velocity Tracking Card -->
+                    <div class="analytics-card">
+                        <div class="analytics-card-header">
+                            <div class="analytics-card-icon">📍</div>
+                            <div class="analytics-card-title">Velocity Tracking</div>
+                        </div>
+                        <div class="analytics-card-description">
+                            Track device movement by analyzing Timing Advance transitions and cell handovers.
+                            Estimates velocity and direction based on TA delta and cell sector patterns.
+                        </div>
+                        <div class="analytics-card-stats">
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="velocityDevices">0</div>
+                                <div class="analytics-card-stat-label">Devices Tracked</div>
+                            </div>
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="velocityAvg">- km/h</div>
+                                <div class="analytics-card-stat-label">Avg Velocity</div>
+                            </div>
+                        </div>
+                    </div>
+
+                    <!-- Crowd Density Card -->
+                    <div class="analytics-card">
+                        <div class="analytics-card-header">
+                            <div class="analytics-card-icon">👥</div>
+                            <div class="analytics-card-title">Crowd Density</div>
+                        </div>
+                        <div class="analytics-card-description">
+                            Aggregate TMSI pings per cell sector to estimate crowd density.
+                            Visualizes hotspots and congestion patterns across towers.
+                        </div>
+                        <div class="analytics-card-stats">
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="crowdTotal">0</div>
+                                <div class="analytics-card-stat-label">Total Devices</div>
+                            </div>
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="crowdPeak">0</div>
+                                <div class="analytics-card-stat-label">Peak Sector</div>
+                            </div>
+                        </div>
+                    </div>
+
+                    <!-- Life Patterns Card -->
+                    <div class="analytics-card">
+                        <div class="analytics-card-header">
+                            <div class="analytics-card-icon">📊</div>
+                            <div class="analytics-card-title">Life Patterns</div>
+                        </div>
+                        <div class="analytics-card-description">
+                            Analyze 60-day historical data to identify recurring patterns in device behavior.
+                            Detects work locations, commute routes, and daily routines.
+                        </div>
+                        <div class="analytics-card-stats">
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="patternsFound">0</div>
+                                <div class="analytics-card-stat-label">Patterns Found</div>
+                            </div>
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="patternsConfidence">0%</div>
+                                <div class="analytics-card-stat-label">Confidence</div>
+                            </div>
+                        </div>
+                    </div>
+
+                    <!-- Neighbor Audit Card -->
+                    <div class="analytics-card">
+                        <div class="analytics-card-header">
+                            <div class="analytics-card-icon">🔍</div>
+                            <div class="analytics-card-title">Neighbor Audit</div>
+                        </div>
+                        <div class="analytics-card-description">
+                            Validate neighbor cell lists against expected network topology.
+                            Detects inconsistencies that may indicate rogue towers.
+                        </div>
+                        <div class="analytics-card-stats">
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="neighborTotal">0</div>
+                                <div class="analytics-card-stat-label">Neighbors</div>
+                            </div>
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="neighborAnomalies">0</div>
+                                <div class="analytics-card-stat-label">Anomalies</div>
+                            </div>
+                        </div>
+                    </div>
+
+                    <!-- Traffic Correlation Card -->
+                    <div class="analytics-card">
+                        <div class="analytics-card-header">
+                            <div class="analytics-card-icon">📡</div>
+                            <div class="analytics-card-title">Traffic Correlation</div>
+                        </div>
+                        <div class="analytics-card-description">
+                            Correlate uplink and downlink timing to identify communication patterns.
+                            Maps device-to-device interactions and network flows.
+                        </div>
+                        <div class="analytics-card-stats">
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="trafficPairs">0</div>
+                                <div class="analytics-card-stat-label">Paired Flows</div>
+                            </div>
+                            <div class="analytics-card-stat">
+                                <div class="analytics-card-stat-value" id="trafficActive">0</div>
+                                <div class="analytics-card-stat-label">Active Now</div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <main class="dashboard">
+        <!-- Left Sidebar -->
+        <div class="left-sidebar">
+            <!-- Signal Source Panel -->
+            <div class="panel signal-source-panel">
+                <div class="panel-header">
+                    <span>SIGNAL SOURCE</span>
+                    <div class="panel-indicator"></div>
+                </div>
+                <div class="signal-source-content">
+                    <div class="form-group">
+                        <label>RTL-SDR Device</label>
+                        <select id="deviceSelect">
+                            <option value="0">Device 0</option>
+                            <option value="1">Device 1</option>
+                            <option value="2">Device 2</option>
+                            <option value="3">Device 3</option>
+                        </select>
+                    </div>
+                </div>
+            </div>
+
+            <!-- Region Selector Panel -->
+            <div class="panel region-panel">
+                <div class="panel-header">
+                    <span>REGION / BANDS</span>
+                    <div class="panel-indicator"></div>
+                </div>
+                <div class="region-buttons">
+                    <button class="region-btn active" data-region="americas" onclick="selectRegion('americas')">
+                        Americas (850/1900 MHz)
+                    </button>
+                    <button class="region-btn" data-region="europe" onclick="selectRegion('europe')">
+                        Europe (900/1800 MHz)
+                    </button>
+                    <button class="region-btn" data-region="asia" onclick="selectRegion('asia')">
+                        Asia (900/1800 MHz)
+                    </button>
+                </div>
+            </div>
+
+            <!-- Advanced Analysis -->
+            <div class="panel advanced-analysis-panel">
+                <div class="panel-header">
+                    <span>ADVANCED ANALYSIS</span>
+                    <div class="panel-indicator" style="background: var(--accent-cyan);"></div>
+                </div>
+                <div class="analysis-buttons">
+                    <button class="analysis-btn" onclick="showVelocityTracking()">
+                        Velocity Tracking
+                    </button>
+                    <button class="analysis-btn" onclick="showCrowdDensity()">
+                        Crowd Density
+                    </button>
+                    <button class="analysis-btn" onclick="showLifePatterns()">
+                        Life Patterns
+                    </button>
+                    <button class="analysis-btn" onclick="showNeighborAudit()">
+                        Neighbor Audit
+                    </button>
+                    <button class="analysis-btn" onclick="showTrafficCorrelation()">
+                        Traffic Correlation
+                    </button>
+                </div>
+                <div id="analysisResults" class="analysis-results" style="display: none;">
+                    <div class="analysis-header">
+                        <span id="analysisTitle">Analysis Results</span>
+                        <button onclick="closeAnalysis()" style="background: none; border: none; color: var(--text-secondary); cursor: pointer; padding: 0; font-size: 18px;">&times;</button>
+                    </div>
+                    <div id="analysisContent" class="analysis-content">
+                        <!-- Dynamic content will be loaded here -->
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <!-- Main Display (Map) -->
+        <div class="main-display">
+            <div id="gsmMap"></div>
+        </div>
+
+        <!-- Right Sidebar -->
+        <div class="right-sidebar">
+            <!-- Selected Tower Info -->
+            <div class="panel selected-tower-panel">
+                <div class="panel-header">
+                    <span>SELECTED TOWER</span>
+                    <div class="panel-indicator"></div>
+                </div>
+                <div id="selectedTowerInfo">
+                    <div class="no-selection">
+                        <div style="font-size: 24px; margin-bottom: 8px;">📡</div>
+                        <div>Click a tower on the map</div>
+                    </div>
+                </div>
+            </div>
+
+            <!-- Tracked Towers -->
+            <div class="panel tracked-list">
+                <div class="panel-header">
+                    <span>TRACKED TOWERS</span>
+                    <div class="panel-indicator"></div>
+                </div>
+                <div class="tracked-list-content" id="towersList">
+                    <div class="no-data">
+                        <div>No towers detected</div>
+                        <div style="font-size: 9px; margin-top: 5px;">Start scanner to begin</div>
+                    </div>
+                </div>
+            </div>
+
+            <!-- Tracked Devices -->
+            <div class="panel tracked-list">
+                <div class="panel-header">
+                    <span>TRACKED DEVICES</span>
+                    <div class="panel-indicator"></div>
+                </div>
+                <div class="tracked-list-content" id="devicesList">
+                    <div class="no-data">
+                        <div>No devices tracked</div>
+                        <div style="font-size: 9px; margin-top: 5px;">Devices will appear here</div>
+                    </div>
+                </div>
+            </div>
+
+            <!-- Alerts -->
+            <div class="panel alerts-panel">
+                <div class="panel-header">
+                    <span>ALERTS</span>
+                    <div class="panel-indicator" style="background: var(--accent-red); box-shadow: 0 0 8px var(--accent-red);"></div>
+                </div>
+                <div class="panel-content" id="alertsList">
+                    <div class="no-data">
+                        <div>No alerts</div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <!-- Controls Bar -->
+        <div class="controls-bar">
+            <!-- Location Group -->
+            <div class="control-group">
+                <span class="control-group-label">GPS LOCATION</span>
+                <div class="control-group-items">
+                    <input type="text" id="obsLat" value="51.5074" style="width: 90px;" placeholder="Latitude" title="Observer Latitude">
+                    <input type="text" id="obsLon" value="-0.1278" style="width: 90px;" placeholder="Longitude" title="Observer Longitude">
+                    <span id="gpsIndicator" class="gps-indicator" style="display: none;">
+                        <span class="gps-dot"></span> GPS
+                    </span>
+                </div>
+            </div>
+
+            <!-- GSM Scanner Group -->
+            <div class="control-group">
+                <span class="control-group-label">GSM SCANNER</span>
+                <div class="control-group-items">
+                    <select id="scannerDevice" title="SDR device for GSM scanning">
+                        <option value="0">Device 0</option>
+                        <option value="1">Device 1</option>
+                        <option value="2">Device 2</option>
+                        <option value="3">Device 3</option>
+                    </select>
+                    <select id="scannerRegion" title="GSM frequency region">
+                        <option value="americas">Americas</option>
+                        <option value="europe">Europe</option>
+                        <option value="asia">Asia</option>
+                    </select>
+                    <button class="start-btn" id="startBtn" onclick="toggleScanner()">START</button>
+                </div>
+            </div>
+        </div>
+    </main>
+
+    <script>
+        // ============================================
+        // STATE
+        // ============================================
+        let gsmMap = null;
+        let towers = {};          // key -> tower data
+        let devices = {};         // key -> device data
+        let towerMarkers = {};    // key -> L.marker
+        let deviceMarkers = {};   // key -> L.marker
+        let sectorArcs = {};      // key -> L.polygon
+        let taRings = {};         // key -> array of L.circle
+        let selectedTowerKey = null;
+        let eventSource = null;
+        let isScanning = false;
+        let currentRegion = 'americas';
+
+        // Statistics
+        let stats = {
+            totalTowers: 0,
+            totalDevices: 0,
+            totalRogues: 0,
+            totalSignals: 0
+        };
+
+        // ============================================
+        // INITIALIZATION
+        // ============================================
+        document.addEventListener('DOMContentLoaded', function() {
+            initMap();
+            loadObserverLocation();
+            startUtcClock();
+        });
+
+        function initMap() {
+            // Initialize Leaflet map with dark theme
+            gsmMap = L.map('gsmMap', {
+                center: [51.5074, -0.1278],
+                zoom: 13,
+                zoomControl: true
+            });
+
+            // CartoDB Dark Matter tiles
+            L.tileLayer('https://{s}.basemaps.cartocdn.com/dark_all/{z}/{x}/{y}{r}.png', {
+                attribution: '&copy; OpenStreetMap contributors &copy; CARTO',
+                subdomains: 'abcd',
+                maxZoom: 20
+            }).addTo(gsmMap);
+
+            console.log('[GSM SPY] Map initialized');
+        }
+
+        function loadObserverLocation() {
+            // Load from shared observer location if available
+            if (window.INTERCEPT_SHARED_OBSERVER_LOCATION) {
+                const loc = window.INTERCEPT_SHARED_OBSERVER_LOCATION;
+                if (loc.lat && loc.lon) {
+                    document.getElementById('obsLat').value = loc.lat;
+                    document.getElementById('obsLon').value = loc.lon;
+                    gsmMap.setView([loc.lat, loc.lon], 13);
+                }
+
+                if (loc.gps_enabled) {
+                    document.getElementById('gpsIndicator').style.display = 'flex';
+                }
+            }
+        }
+
+        function startUtcClock() {
+            function updateClock() {
+                const now = new Date();
+                const utc = now.toISOString().slice(11, 19);
+                document.getElementById('utcTime').textContent = utc + ' UTC';
+            }
+            setInterval(updateClock, 1000);
+            updateClock();
+        }
+
+        // ============================================
+        // SCANNER CONTROL
+        // ============================================
+        function toggleScanner() {
+            if (isScanning) {
+                stopScanner();
+            } else {
+                startScanner();
+            }
+        }
+
+        function startScanner() {
+            const device = document.getElementById('scannerDevice').value;
+            const region = document.getElementById('scannerRegion').value;
+            const lat = parseFloat(document.getElementById('obsLat').value);
+            const lon = parseFloat(document.getElementById('obsLon').value);
+
+            if (isNaN(lat) || isNaN(lon)) {
+                alert('Please enter valid GPS coordinates');
+                return;
+            }
+
+            // Start backend scanner
+            fetch('/gsm_spy/start', {
+                method: 'POST',
+                headers: { 'Content-Type': 'application/json' },
+                body: JSON.stringify({
+                    device: parseInt(device),
+                    region: region,
+                    lat: lat,
+                    lon: lon
+                })
+            })
+            .then(response => response.json())
+            .then(data => {
+                if (data.status === 'started') {
+                    isScanning = true;
+                    updateScannerUI(true);
+                    startEventStream();
+                    console.log('[GSM SPY] Scanner started');
+                } else {
+                    alert('Failed to start scanner: ' + (data.error || 'Unknown error'));
+                }
+            })
+            .catch(error => {
+                console.error('[GSM SPY] Error starting scanner:', error);
+                alert('Error starting scanner');
+            });
+        }
+
+        function stopScanner() {
+            fetch('/gsm_spy/stop', { method: 'POST' })
+            .then(response => response.json())
+            .then(data => {
+                isScanning = false;
+                updateScannerUI(false);
+                if (eventSource) {
+                    eventSource.close();
+                    eventSource = null;
+                }
+                console.log('[GSM SPY] Scanner stopped');
+            })
+            .catch(error => {
+                console.error('[GSM SPY] Error stopping scanner:', error);
+            });
+        }
+
+        function updateScannerUI(active) {
+            const startBtn = document.getElementById('startBtn');
+            const scannerDot = document.getElementById('scannerDot');
+            const scannerStatus = document.getElementById('scannerStatus');
+            const trackingDot = document.getElementById('trackingDot');
+            const trackingStatus = document.getElementById('trackingStatus');
+
+            if (active) {
+                startBtn.textContent = 'STOP';
+                startBtn.classList.add('active');
+                scannerDot.classList.remove('inactive');
+                scannerStatus.textContent = 'SCANNING';
+                trackingDot.classList.remove('inactive');
+                trackingStatus.textContent = 'ACTIVE';
+            } else {
+                startBtn.textContent = 'START';
+                startBtn.classList.remove('active');
+                scannerDot.classList.add('inactive');
+                scannerStatus.textContent = 'STANDBY';
+                trackingDot.classList.add('inactive');
+                trackingStatus.textContent = 'STANDBY';
+            }
+        }
+
+        // ============================================
+        // EVENT STREAM (SSE)
+        // ============================================
+        function startEventStream() {
+            if (eventSource) {
+                eventSource.close();
+            }
+
+            eventSource = new EventSource('/gsm_spy/stream');
+
+            eventSource.onmessage = function(e) {
+                try {
+                    const data = JSON.parse(e.data);
+
+                    if (data.type === 'keepalive') {
+                        return;
+                    }
+
+                    if (data.type === 'tower') {
+                        updateTower(data);
+                    } else if (data.type === 'device') {
+                        updateDevice(data);
+                    } else if (data.type === 'rogue_alert') {
+                        addRogueAlert(data);
+                    } else if (data.type === 'stats') {
+                        updateStats(data);
+                    }
+                } catch (error) {
+                    console.error('[GSM SPY] Error parsing event:', error);
+                }
+            };
+
+            eventSource.onerror = function(e) {
+                console.error('[GSM SPY] EventSource error:', e);
+                if (eventSource.readyState === EventSource.CLOSED) {
+                    console.log('[GSM SPY] EventSource closed, reconnecting...');
+                    setTimeout(startEventStream, 3000);
+                }
+            };
+        }
+
+        // ============================================
+        // TOWER HANDLING
+        // ============================================
+        function updateTower(data) {
+            const key = `${data.mcc}-${data.mnc}-${data.lac}-${data.cid}`;
+            towers[key] = data;
+
+            // Create or update marker
+            if (!towerMarkers[key]) {
+                // Create new marker
+                const marker = L.circleMarker([data.lat, data.lon], {
+                    radius: 10,
+                    fillColor: data.rogue ? '#e25d5d' : '#38c180',
+                    color: data.rogue ? '#e25d5d' : '#38c180',
+                    weight: 2,
+                    opacity: 1,
+                    fillOpacity: 0.3
+                });
+
+                marker.on('click', function() {
+                    selectTower(key);
+                });
+
+                marker.bindPopup(`
+                    <strong>${data.rogue ? '⚠ ROGUE ' : ''}Tower ${data.cid}</strong><br>
+                    MCC: ${data.mcc} MNC: ${data.mnc}<br>
+                    LAC: ${data.lac} ARFCN: ${data.arfcn}
+                `);
+
+                marker.addTo(gsmMap);
+                towerMarkers[key] = marker;
+
+                // Draw sector arc
+                drawSectorArc(key, data);
+
+                // Draw TA rings
+                drawTARings(key, data);
+            } else {
+                // Update existing marker
+                const marker = towerMarkers[key];
+                marker.setLatLng([data.lat, data.lon]);
+
+                // Update color if rogue status changed
+                const color = data.rogue ? '#e25d5d' : '#38c180';
+                marker.setStyle({
+                    fillColor: color,
+                    color: color
+                });
+            }
+
+            // Update towers list
+            updateTowersList();
+
+            // Update stats
+            stats.totalTowers = Object.keys(towers).length;
+            stats.totalRogues = Object.values(towers).filter(t => t.rogue).length;
+            updateStatsDisplay();
+        }
+
+        function drawSectorArc(key, tower) {
+            // Calculate sector direction based on CID modulo 3
+            const sectorIndex = tower.cid % 3;
+            const startAngle = sectorIndex * 120;
+            const endAngle = startAngle + 120;
+            const radius = 1000; // meters
+
+            const wedge = createWedge([tower.lat, tower.lon], radius, startAngle, endAngle);
+
+            const arc = L.polygon(wedge, {
+                color: '#4aa3ff',
+                fillColor: '#4aa3ff',
+                fillOpacity: 0.1,
+                weight: 1,
+                opacity: 0.3
+            });
+
+            arc.addTo(gsmMap);
+            sectorArcs[key] = arc;
+        }
+
+        function drawTARings(key, tower) {
+            // Draw concentric circles for Timing Advance rings
+            // TA range: 0-63, each unit = ~554 meters
+            const rings = [];
+            const taMax = 63;
+            const metersPerTa = 554;
+
+            for (let ta = 15; ta <= taMax; ta += 15) {
+                const radius = ta * metersPerTa;
+                const circle = L.circle([tower.lat, tower.lon], {
+                    radius: radius,
+                    color: '#38c180',
+                    weight: 1,
+                    fillOpacity: 0,
+                    opacity: 0.2
+                });
+                circle.addTo(gsmMap);
+                rings.push(circle);
+            }
+
+            taRings[key] = rings;
+        }
+
+        function createWedge(center, radius, startAngle, endAngle) {
+            // Create wedge polygon for sector arc
+            const points = [center];
+            const segments = 32;
+
+            for (let i = 0; i <= segments; i++) {
+                const angle = startAngle + (endAngle - startAngle) * i / segments;
+                const rad = angle * Math.PI / 180;
+                const latOffset = (radius / 111320) * Math.cos(rad);
+                const lonOffset = (radius / (111320 * Math.cos(center[0] * Math.PI / 180))) * Math.sin(rad);
+                points.push([center[0] + latOffset, center[1] + lonOffset]);
+            }
+
+            points.push(center);
+            return points;
+        }
+
+        function selectTower(key) {
+            selectedTowerKey = key;
+            const tower = towers[key];
+
+            if (!tower) return;
+
+            // Update selected tower panel
+            const infoDiv = document.getElementById('selectedTowerInfo');
+            infoDiv.innerHTML = `
+                <div class="tower-info">
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">Cell ID</span>
+                        <span class="tower-info-value">${tower.cid} ${tower.rogue ? '<span class="tower-rogue-badge">ROGUE</span>' : ''}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">MCC / MNC</span>
+                        <span class="tower-info-value">${tower.mcc} / ${tower.mnc}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">LAC</span>
+                        <span class="tower-info-value">${tower.lac}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">ARFCN</span>
+                        <span class="tower-info-value">${tower.arfcn}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">Signal (dBm)</span>
+                        <span class="tower-info-value">${tower.signal || 'N/A'}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">Location</span>
+                        <span class="tower-info-value">${tower.lat.toFixed(6)}, ${tower.lon.toFixed(6)}</span>
+                    </div>
+                    <div class="tower-info-row">
+                        <span class="tower-info-label">First Seen</span>
+                        <span class="tower-info-value">${new Date(tower.timestamp).toLocaleTimeString()}</span>
+                    </div>
+                </div>
+            `;
+
+            // Update list selection
+            updateTowersList();
+        }
+
+        function updateTowersList() {
+            const listDiv = document.getElementById('towersList');
+
+            if (Object.keys(towers).length === 0) {
+                listDiv.innerHTML = '<div class="no-data"><div>No towers detected</div></div>';
+                return;
+            }
+
+            let html = '';
+            for (const [key, tower] of Object.entries(towers)) {
+                const selected = key === selectedTowerKey ? 'selected' : '';
+                html += `
+                    <div class="list-item ${selected}" onclick="selectTower('${key}')">
+                        <div class="list-item-header">
+                            <span class="list-item-id">CID ${tower.cid}</span>
+                            <span class="list-item-meta">${tower.mcc}-${tower.mnc}</span>
+                            ${tower.rogue ? '<span class="rogue-indicator"></span>' : ''}
+                        </div>
+                        <div class="list-item-details">
+                            LAC ${tower.lac} | ARFCN ${tower.arfcn} | ${tower.signal || 'N/A'} dBm
+                        </div>
+                    </div>
+                `;
+            }
+
+            listDiv.innerHTML = html;
+        }
+
+        // ============================================
+        // DEVICE HANDLING
+        // ============================================
+        function updateDevice(data) {
+            const key = data.imsi || data.tmsi || `device_${Date.now()}`;
+            devices[key] = data;
+
+            // Create device "blip" marker
+            const marker = L.circleMarker([data.lat, data.lon], {
+                radius: 5,
+                fillColor: '#e25d5d',
+                color: '#e25d5d',
+                weight: 2,
+                opacity: 1,
+                fillOpacity: 0.8,
+                className: 'device-blip'
+            });
+
+            marker.bindPopup(`
+                <strong>Device</strong><br>
+                ${data.imsi ? 'IMSI: ' + data.imsi : 'TMSI: ' + data.tmsi}<br>
+                Tower: ${data.cid}
+            `);
+
+            marker.addTo(gsmMap);
+            deviceMarkers[key] = marker;
+
+            // Remove marker after 5 seconds (pulse animation duration)
+            setTimeout(() => {
+                if (deviceMarkers[key]) {
+                    gsmMap.removeLayer(deviceMarkers[key]);
+                    delete deviceMarkers[key];
+                }
+            }, 5000);
+
+            // Update devices list
+            updateDevicesList();
+
+            // Update stats
+            stats.totalDevices = Object.keys(devices).length;
+            updateStatsDisplay();
+        }
+
+        function updateDevicesList() {
+            const listDiv = document.getElementById('devicesList');
+
+            if (Object.keys(devices).length === 0) {
+                listDiv.innerHTML = '<div class="no-data"><div>No devices tracked</div></div>';
+                return;
+            }
+
+            let html = '';
+            for (const [key, device] of Object.entries(devices)) {
+                const identifier = device.imsi || device.tmsi || 'Unknown';
+                html += `
+                    <div class="list-item">
+                        <div class="list-item-header">
+                            <span class="list-item-id">${identifier}</span>
+                            <span class="list-item-meta">${new Date(device.timestamp).toLocaleTimeString()}</span>
+                        </div>
+                        <div class="list-item-details">
+                            Tower CID ${device.cid} | ${device.lat.toFixed(6)}, ${device.lon.toFixed(6)}
+                        </div>
+                    </div>
+                `;
+            }
+
+            listDiv.innerHTML = html;
+        }
+
+        // ============================================
+        // ALERTS
+        // ============================================
+        function addRogueAlert(data) {
+            const listDiv = document.getElementById('alertsList');
+
+            if (listDiv.querySelector('.no-data')) {
+                listDiv.innerHTML = '';
+            }
+
+            const alertItem = document.createElement('div');
+            alertItem.className = 'alert-item';
+            alertItem.innerHTML = `
+                <div class="alert-time">${new Date(data.timestamp).toLocaleTimeString()}</div>
+                <div class="alert-message">
+                    ⚠ ROGUE TOWER DETECTED<br>
+                    CID ${data.cid} | MCC ${data.mcc} MNC ${data.mnc} | ${data.reason || 'Unknown threat'}
+                </div>
+            `;
+
+            listDiv.insertBefore(alertItem, listDiv.firstChild);
+
+            // Keep only last 20 alerts
+            while (listDiv.children.length > 20) {
+                listDiv.removeChild(listDiv.lastChild);
+            }
+        }
+
+        // ============================================
+        // STATS
+        // ============================================
+        function updateStats(data) {
+            if (data.total_signals !== undefined) {
+                stats.totalSignals = data.total_signals;
+            }
+            updateStatsDisplay();
+        }
+
+        function updateStatsDisplay() {
+            document.getElementById('stripTowers').textContent = stats.totalTowers;
+            document.getElementById('stripDevices').textContent = stats.totalDevices;
+            document.getElementById('stripRogues').textContent = stats.totalRogues;
+            document.getElementById('stripSignals').textContent = stats.totalSignals;
+        }
+
+        // ============================================
+        // REGION SELECTION
+        // ============================================
+        function selectRegion(region) {
+            currentRegion = region;
+
+            // Update UI
+            document.querySelectorAll('.region-btn').forEach(btn => {
+                btn.classList.remove('active');
+            });
+            document.querySelector(`.region-btn[data-region="${region}"]`).classList.add('active');
+
+            // Update scanner region select
+            document.getElementById('scannerRegion').value = region;
+
+            console.log('[GSM SPY] Region selected:', region);
+        }
+
+        // ============================================
+        // ANALYTICS OVERVIEW MODAL
+        // ============================================
+
+        function openAnalyticsModal() {
+            document.getElementById('analyticsModal').classList.add('active');
+            updateAnalyticsStats();
+        }
+
+        function closeAnalyticsModal() {
+            document.getElementById('analyticsModal').classList.remove('active');
+        }
+
+        // Close modal when clicking outside
+        document.addEventListener('DOMContentLoaded', function() {
+            const modal = document.getElementById('analyticsModal');
+            modal.addEventListener('click', function(e) {
+                if (e.target === modal) {
+                    closeAnalyticsModal();
+                }
+            });
+
+            // Close modal on ESC key
+            document.addEventListener('keydown', function(e) {
+                if (e.key === 'Escape' && modal.classList.contains('active')) {
+                    closeAnalyticsModal();
+                }
+            });
+        });
+
+        async function updateAnalyticsStats() {
+            try {
+                // Velocity Tracking stats
+                const velocityResp = await fetch('/gsm_spy/velocity?minutes=60');
+                const velocityData = await velocityResp.json();
+                if (velocityData && velocityData.length > 0) {
+                    document.getElementById('velocityDevices').textContent = velocityData.length;
+                    const avgVelocity = velocityData.reduce((sum, item) => sum + item.estimated_velocity, 0) / velocityData.length;
+                    document.getElementById('velocityAvg').textContent = (avgVelocity * 3.6).toFixed(1) + ' km/h';
+                }
+
+                // Crowd Density stats
+                const crowdResp = await fetch('/gsm_spy/crowd_density?hours=24');
+                const crowdData = await crowdResp.json();
+                if (crowdData && crowdData.length > 0) {
+                    const totalDevices = crowdData.reduce((sum, item) => sum + item.device_count, 0);
+                    const peakSector = Math.max(...crowdData.map(item => item.device_count));
+                    document.getElementById('crowdTotal').textContent = totalDevices;
+                    document.getElementById('crowdPeak').textContent = peakSector;
+                }
+
+                // Life Patterns stats
+                const patternsResp = await fetch('/gsm_spy/life_patterns?days=60');
+                const patternsData = await patternsResp.json();
+                if (patternsData && patternsData.length > 0) {
+                    document.getElementById('patternsFound').textContent = patternsData.length;
+                    // Calculate average confidence if available
+                    if (patternsData[0].confidence) {
+                        const avgConfidence = patternsData.reduce((sum, item) => sum + item.confidence, 0) / patternsData.length;
+                        document.getElementById('patternsConfidence').textContent = avgConfidence.toFixed(0) + '%';
+                    }
+                }
+
+                // Neighbor Audit stats
+                const neighborResp = await fetch('/gsm_spy/neighbor_audit');
+                const neighborData = await neighborResp.json();
+                if (neighborData) {
+                    document.getElementById('neighborTotal').textContent = neighborData.total_neighbors || 0;
+                    document.getElementById('neighborAnomalies').textContent = neighborData.anomalies || 0;
+                }
+
+                // Traffic Correlation stats
+                const trafficResp = await fetch('/gsm_spy/traffic_correlation?minutes=30');
+                const trafficData = await trafficResp.json();
+                if (trafficData && trafficData.length > 0) {
+                    document.getElementById('trafficPairs').textContent = trafficData.length;
+                    const activeNow = trafficData.filter(item => item.is_active).length;
+                    document.getElementById('trafficActive').textContent = activeNow;
+                }
+            } catch (error) {
+                console.error('Error updating analytics stats:', error);
+            }
+        }
+
+        // ============================================
+        // ADVANCED ANALYSIS FEATURES
+        // ============================================
+
+        function closeAnalysis() {
+            document.getElementById('analysisResults').style.display = 'none';
+        }
+
+        async function showVelocityTracking() {
+            const resultsDiv = document.getElementById('analysisResults');
+            const contentDiv = document.getElementById('analysisContent');
+            document.getElementById('analysisTitle').textContent = 'Velocity Tracking';
+
+            try {
+                const response = await fetch('/gsm_spy/velocity?minutes=60');
+                const data = await response.json();
+
+                if (!data || data.length === 0) {
+                    contentDiv.innerHTML = '<div class="no-data">No velocity data available</div>';
+                } else {
+                    let html = '<div style="font-size: 10px; color: var(--text-secondary); margin-bottom: 10px;">Last 60 minutes</div>';
+                    data.slice(0, 10).forEach(item => {
+                        const velocity_kmh = (item.estimated_velocity * 3.6).toFixed(2);
+                        html += `
+                            <div class="analysis-device-item">
+                                <div style="font-weight: 600; color: var(--accent-cyan);">${item.device_id}</div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Velocity:</span>
+                                    <span class="analysis-stat-value">${velocity_kmh} km/h</span>
+                                </div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">TA Change:</span>
+                                    <span class="analysis-stat-value">${item.prev_ta} → ${item.curr_ta}</span>
+                                </div>
+                                <div style="font-size: 9px; color: var(--text-dim); margin-top: 4px;">${new Date(item.timestamp).toLocaleString()}</div>
+                            </div>
+                        `;
+                    });
+                    contentDiv.innerHTML = html;
+                }
+                resultsDiv.style.display = 'block';
+            } catch (error) {
+                console.error('Error fetching velocity data:', error);
+                contentDiv.innerHTML = '<div class="analysis-warning">Error loading velocity data</div>';
+                resultsDiv.style.display = 'block';
+            }
+        }
+
+        async function showCrowdDensity() {
+            const resultsDiv = document.getElementById('analysisResults');
+            const contentDiv = document.getElementById('analysisContent');
+            document.getElementById('analysisTitle').textContent = 'Crowd Density';
+
+            try {
+                const response = await fetch('/gsm_spy/crowd_density?hours=1');
+                const data = await response.json();
+
+                if (!data || data.length === 0) {
+                    contentDiv.innerHTML = '<div class="no-data">No crowd data available</div>';
+                } else {
+                    let html = '<div style="font-size: 10px; color: var(--text-secondary); margin-bottom: 10px;">Last 1 hour</div>';
+                    data.forEach(item => {
+                        const densityColor = item.density_level === 'high' ? 'var(--accent-red)' :
+                                           item.density_level === 'medium' ? 'var(--accent-yellow)' : 'var(--accent-green)';
+                        html += `
+                            <div class="analysis-device-item" style="border-left-color: ${densityColor};">
+                                <div style="font-weight: 600; color: var(--accent-cyan);">Cell ${item.cid}</div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Unique Devices:</span>
+                                    <span class="analysis-stat-value">${item.unique_devices}</span>
+                                </div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Total Pings:</span>
+                                    <span class="analysis-stat-value">${item.total_pings}</span>
+                                </div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Density:</span>
+                                    <span class="analysis-stat-value" style="color: ${densityColor}; text-transform: uppercase;">${item.density_level}</span>
+                                </div>
+                            </div>
+                        `;
+                    });
+                    contentDiv.innerHTML = html;
+                }
+                resultsDiv.style.display = 'block';
+            } catch (error) {
+                console.error('Error fetching crowd density:', error);
+                contentDiv.innerHTML = '<div class="analysis-warning">Error loading crowd density data</div>';
+                resultsDiv.style.display = 'block';
+            }
+        }
+
+        async function showLifePatterns() {
+            const resultsDiv = document.getElementById('analysisResults');
+            const contentDiv = document.getElementById('analysisContent');
+            document.getElementById('analysisTitle').textContent = 'Life Patterns';
+
+            // Prompt for device ID
+            const deviceId = prompt('Enter device IMSI or TMSI:');
+            if (!deviceId) return;
+
+            try {
+                const response = await fetch(`/gsm_spy/life_patterns?device_id=${encodeURIComponent(deviceId)}`);
+                const data = await response.json();
+
+                if (data.error) {
+                    contentDiv.innerHTML = `<div class="analysis-warning">${data.error}</div>`;
+                } else if (data.regular_locations && data.regular_locations.length > 0) {
+                    let html = `
+                        <div style="font-size: 10px; color: var(--text-secondary); margin-bottom: 10px;">
+                            ${data.total_observations} total observations
+                        </div>
+                        <div style="font-weight: 600; margin-bottom: 8px;">Regular Locations:</div>
+                    `;
+                    data.regular_locations.forEach(loc => {
+                        html += `
+                            <div class="analysis-device-item">
+                                <div style="font-weight: 600; color: var(--accent-cyan);">Cell ${loc.cid}</div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Typical Time:</span>
+                                    <span class="analysis-stat-value">${loc.typical_time}</span>
+                                </div>
+                                <div class="analysis-stat">
+                                    <span class="analysis-stat-label">Frequency:</span>
+                                    <span class="analysis-stat-value">${loc.frequency} times</span>
+                                </div>
+                            </div>
+                        `;
+                    });
+                    contentDiv.innerHTML = html;
+                } else {
+                    contentDiv.innerHTML = '<div class="no-data">No regular patterns detected</div>';
+                }
+                resultsDiv.style.display = 'block';
+            } catch (error) {
+                console.error('Error fetching life patterns:', error);
+                contentDiv.innerHTML = '<div class="analysis-warning">Error loading life patterns</div>';
+                resultsDiv.style.display = 'block';
+            }
+        }
+
+        async function showNeighborAudit() {
+            const resultsDiv = document.getElementById('analysisResults');
+            const contentDiv = document.getElementById('analysisContent');
+            document.getElementById('analysisTitle').textContent = 'Neighbor Audit';
+
+            // Prompt for CID
+            const cid = prompt('Enter Cell ID (CID) to audit:');
+            if (!cid) return;
+
+            try {
+                const response = await fetch(`/gsm_spy/neighbor_audit?cid=${encodeURIComponent(cid)}`);
+                const data = await response.json();
+
+                if (data.error) {
+                    contentDiv.innerHTML = `<div class="analysis-warning">${data.error}</div>`;
+                } else {
+                    const statusColor = data.status === 'suspicious' ? 'var(--accent-red)' : 'var(--accent-green)';
+                    let html = `
+                        <div class="analysis-stat">
+                            <span class="analysis-stat-label">Status:</span>
+                            <span class="analysis-stat-value" style="color: ${statusColor}; text-transform: uppercase;">${data.status}</span>
+                        </div>
+                        <div class="analysis-stat">
+                            <span class="analysis-stat-label">Neighbor Count:</span>
+                            <span class="analysis-stat-value">${data.neighbor_count}</span>
+                        </div>
+                    `;
+
+                    if (data.issues && data.issues.length > 0) {
+                        html += '<div style="font-weight: 600; margin: 10px 0 5px 0;">Issues Found:</div>';
+                        data.issues.forEach(issue => {
+                            html += `
+                                <div class="analysis-warning">
+                                    <div style="font-weight: 600;">${issue.type}</div>
+                                    <div>${issue.message}</div>
+                                </div>
+                            `;
+                        });
+                    } else {
+                        html += '<div style="color: var(--accent-green); margin-top: 10px;">✓ No issues detected</div>';
+                    }
+
+                    contentDiv.innerHTML = html;
+                }
+                resultsDiv.style.display = 'block';
+            } catch (error) {
+                console.error('Error fetching neighbor audit:', error);
+                contentDiv.innerHTML = '<div class="analysis-warning">Error loading audit data</div>';
+                resultsDiv.style.display = 'block';
+            }
+        }
+
+        async function showTrafficCorrelation() {
+            const resultsDiv = document.getElementById('analysisResults');
+            const contentDiv = document.getElementById('analysisContent');
+            document.getElementById('analysisTitle').textContent = 'Traffic Correlation';
+
+            // Prompt for CID
+            const cid = prompt('Enter Cell ID (CID) to analyze:');
+            if (!cid) return;
+
+            try {
+                const response = await fetch(`/gsm_spy/traffic_correlation?cid=${encodeURIComponent(cid)}&minutes=5`);
+                const data = await response.json();
+
+                if (data.error) {
+                    contentDiv.innerHTML = `<div class="analysis-warning">${data.error}</div>`;
+                } else {
+                    let html = `
+                        <div style="font-size: 10px; color: var(--text-secondary); margin-bottom: 10px;">
+                            Last ${data.time_window_minutes} minutes
+                        </div>
+                        <div class="analysis-stat">
+                            <span class="analysis-stat-label">Active Devices:</span>
+                            <span class="analysis-stat-value">${data.active_devices}</span>
+                        </div>
+                    `;
+
+                    if (data.correlations && data.correlations.length > 0) {
+                        html += '<div style="font-weight: 600; margin: 10px 0 5px 0;">Device Activity:</div>';
+                        data.correlations.slice(0, 10).forEach(corr => {
+                            const activityColor = corr.activity_level === 'high' ? 'var(--accent-red)' :
+                                                corr.activity_level === 'medium' ? 'var(--accent-yellow)' : 'var(--accent-green)';
+                            html += `
+                                <div class="analysis-device-item">
+                                    <div style="font-weight: 600; color: var(--accent-cyan);">${corr.device_id}</div>
+                                    <div class="analysis-stat">
+                                        <span class="analysis-stat-label">Burst Count:</span>
+                                        <span class="analysis-stat-value">${corr.burst_count}</span>
+                                    </div>
+                                    <div class="analysis-stat">
+                                        <span class="analysis-stat-label">Activity:</span>
+                                        <span class="analysis-stat-value" style="color: ${activityColor}; text-transform: uppercase;">${corr.activity_level}</span>
+                                    </div>
+                                    <div style="font-size: 9px; color: var(--text-dim); margin-top: 4px;">TA: ${corr.ta_value}</div>
+                                </div>
+                            `;
+                        });
+                    } else {
+                        html += '<div class="no-data">No active devices in time window</div>';
+                    }
+
+                    contentDiv.innerHTML = html;
+                }
+                resultsDiv.style.display = 'block';
+            } catch (error) {
+                console.error('Error fetching traffic correlation:', error);
+                contentDiv.innerHTML = '<div class="analysis-warning">Error loading correlation data</div>';
+                resultsDiv.style.display = 'block';
+            }
+        }
+
+    </script>
+
+    <!-- Global Navigation Script -->
+    <script src="{{ url_for('static', filename='js/core/global-nav.js') }}"></script>
+</body>
+</html>
diff --git a/templates/index.html b/templates/index.html
index 6693a39..1b72956 100644
--- a/templates/index.html
+++ b/templates/index.html
@@ -167,6 +167,10 @@
                                 <span class="mode-icon icon"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M3 18l2 2h14l2-2"/><path d="M5 18v-4a2 2 0 0 1 2-2h10a2 2 0 0 1 2 2v4"/><path d="M12 12V6"/></svg></span>
                                 <span class="mode-name">Vessels</span>
                             </a>
+                            <a href="/gsm_spy/dashboard" class="mode-card mode-card-sm" style="text-decoration: none;">
+                                <span class="mode-icon icon"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="5" y="2" width="14" height="20" rx="2" ry="2"/><line x1="12" y1="18" x2="12.01" y2="18"/><path d="M8 6h8M8 10h8M8 14h8"/></svg></span>
+                                <span class="mode-name">GSM SPY</span>
+                            </a>
                             <button class="mode-card mode-card-sm" onclick="selectMode('aprs')">
                                 <span class="mode-icon icon"><svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M20 10c0 6-8 12-8 12s-8-6-8-12a8 8 0 0 1 16 0Z"/><circle cx="12" cy="10" r="3"/></svg></span>
                                 <span class="mode-name">APRS</span>
diff --git a/templates/partials/nav.html b/templates/partials/nav.html
index 5e615b3..0251d7a 100644
--- a/templates/partials/nav.html
+++ b/templates/partials/nav.html
@@ -67,6 +67,7 @@
             {{ mode_item('rtlamr', 'Meters', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M22 12h-4l-3 9L9 3l-3 9H2"/></svg>') }}
             {{ mode_item('adsb', 'Aircraft', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M21 16v-2l-8-5V3.5a1.5 1.5 0 0 0-3 0V9l-8 5v2l8-2.5V19l-2 1.5V22l3.5-1 3.5 1v-1.5L13 19v-5.5l8 2.5z"/></svg>', '/adsb/dashboard') }}
             {{ mode_item('ais', 'Vessels', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M3 18l2 2h14l2-2"/><path d="M5 18v-4a2 2 0 0 1 2-2h10a2 2 0 0 1 2 2v4"/><path d="M12 12V6"/><path d="M12 6l4 3"/></svg>', '/ais/dashboard') }}
+            {{ mode_item('gsm', 'GSM SPY', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="5" y="2" width="14" height="20" rx="2" ry="2"/><line x1="12" y1="18" x2="12.01" y2="18"/><path d="M8 6h8M8 10h8M8 14h8"/></svg>', '/gsm_spy/dashboard') }}
             {{ mode_item('aprs', 'APRS', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M20 10c0 6-8 12-8 12s-8-6-8-12a8 8 0 0 1 16 0Z"/><circle cx="12" cy="10" r="3"/></svg>') }}
             {{ mode_item('listening', 'Listening Post', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><rect x="3" y="3" width="18" height="18" rx="2"/><path d="M3 9h18"/><path d="M9 21V9"/></svg>') }}
             {{ mode_item('spystations', 'Spy Stations', '<svg viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M4.9 19.1C1 15.2 1 8.8 4.9 4.9"/><path d="M7.8 16.2c-2.3-2.3-2.3-6.1 0-8.5"/><circle cx="12" cy="12" r="2"/><path d="M16.2 7.8c2.3 2.3 2.3 6.1 0 8.5"/><path d="M19.1 4.9C23 8.8 23 15.1 19.1 19"/></svg>') }}
diff --git a/utils/constants.py b/utils/constants.py
index f252938..f51124e 100644
--- a/utils/constants.py
+++ b/utils/constants.py
@@ -274,3 +274,14 @@ MAX_DEAUTH_ALERTS_AGE_SECONDS = 300  # 5 minutes
 
 # Deauth detector sniff timeout (seconds)
 DEAUTH_SNIFF_TIMEOUT = 0.5
+
+
+# =============================================================================
+# GSM SPY (Cellular Intelligence)
+# =============================================================================
+
+# Maximum age for GSM tower/device data in DataStore (seconds)
+MAX_GSM_AGE_SECONDS = 300  # 5 minutes
+
+# Timing Advance conversion to meters
+GSM_TA_METERS_PER_UNIT = 554
diff --git a/utils/database.py b/utils/database.py
index 6467c27..97713ff 100644
--- a/utils/database.py
+++ b/utils/database.py
@@ -352,6 +352,134 @@ def init_db() -> None:
             ON tscm_cases(status, created_at)
         ''')
 
+        # =====================================================================
+        # GSM (Global System for Mobile) Intelligence Tables
+        # =====================================================================
+
+        # gsm_cells - Known cell towers (OpenCellID cache)
+        conn.execute('''
+            CREATE TABLE IF NOT EXISTS gsm_cells (
+                id INTEGER PRIMARY KEY AUTOINCREMENT,
+                mcc INTEGER NOT NULL,
+                mnc INTEGER NOT NULL,
+                lac INTEGER NOT NULL,
+                cid INTEGER NOT NULL,
+                lat REAL,
+                lon REAL,
+                azimuth INTEGER,
+                range_meters INTEGER,
+                samples INTEGER,
+                radio TEXT,
+                operator TEXT,
+                first_seen TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                last_verified TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                metadata TEXT,
+                UNIQUE(mcc, mnc, lac, cid)
+            )
+        ''')
+
+        # gsm_rogues - Detected rogue towers / IMSI catchers
+        conn.execute('''
+            CREATE TABLE IF NOT EXISTS gsm_rogues (
+                id INTEGER PRIMARY KEY AUTOINCREMENT,
+                arfcn INTEGER NOT NULL,
+                mcc INTEGER,
+                mnc INTEGER,
+                lac INTEGER,
+                cid INTEGER,
+                signal_strength REAL,
+                reason TEXT NOT NULL,
+                threat_level TEXT DEFAULT 'medium',
+                detected_at TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                location_lat REAL,
+                location_lon REAL,
+                acknowledged BOOLEAN DEFAULT 0,
+                notes TEXT,
+                metadata TEXT
+            )
+        ''')
+
+        # gsm_signals - 60-day archive of signal observations
+        conn.execute('''
+            CREATE TABLE IF NOT EXISTS gsm_signals (
+                id INTEGER PRIMARY KEY AUTOINCREMENT,
+                imsi TEXT,
+                tmsi TEXT,
+                mcc INTEGER,
+                mnc INTEGER,
+                lac INTEGER,
+                cid INTEGER,
+                ta_value INTEGER,
+                signal_strength REAL,
+                arfcn INTEGER,
+                timestamp TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                metadata TEXT
+            )
+        ''')
+
+        # gsm_tmsi_log - 24-hour raw pings for crowd density
+        conn.execute('''
+            CREATE TABLE IF NOT EXISTS gsm_tmsi_log (
+                id INTEGER PRIMARY KEY AUTOINCREMENT,
+                tmsi TEXT NOT NULL,
+                lac INTEGER,
+                cid INTEGER,
+                ta_value INTEGER,
+                timestamp TIMESTAMP DEFAULT CURRENT_TIMESTAMP
+            )
+        ''')
+
+        # gsm_velocity_log - 1-hour buffer for movement tracking
+        conn.execute('''
+            CREATE TABLE IF NOT EXISTS gsm_velocity_log (
+                id INTEGER PRIMARY KEY AUTOINCREMENT,
+                device_id TEXT NOT NULL,
+                prev_ta INTEGER,
+                curr_ta INTEGER,
+                prev_cid INTEGER,
+                curr_cid INTEGER,
+                timestamp TIMESTAMP DEFAULT CURRENT_TIMESTAMP,
+                estimated_velocity REAL,
+                metadata TEXT
+            )
+        ''')
+
+        # GSM indexes for performance
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_cells_location
+            ON gsm_cells(lat, lon)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_cells_identity
+            ON gsm_cells(mcc, mnc, lac, cid)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_rogues_severity
+            ON gsm_rogues(threat_level, detected_at)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_signals_cell_time
+            ON gsm_signals(cid, lac, timestamp)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_signals_device
+            ON gsm_signals(imsi, tmsi, timestamp)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_tmsi_log_time
+            ON gsm_tmsi_log(timestamp)
+        ''')
+
+        conn.execute('''
+            CREATE INDEX IF NOT EXISTS idx_gsm_velocity_log_device
+            ON gsm_velocity_log(device_id, timestamp)
+        ''')
+
         # =====================================================================
         # DSC (Digital Selective Calling) Tables
         # =====================================================================
@@ -1205,127 +1333,127 @@ def get_all_known_devices(
         ]
 
 
-def delete_known_device(identifier: str) -> bool:
-    """Remove a device from the known-good registry."""
-    with get_db() as conn:
-        cursor = conn.execute(
-            'DELETE FROM tscm_known_devices WHERE identifier = ?',
-            (identifier.upper(),)
-        )
-        return cursor.rowcount > 0
-
-
-# =============================================================================
-# TSCM Schedule Functions
-# =============================================================================
-
-def create_tscm_schedule(
-    name: str,
-    cron_expression: str,
-    sweep_type: str = 'standard',
-    baseline_id: int | None = None,
-    zone_name: str | None = None,
-    enabled: bool = True,
-    notify_on_threat: bool = True,
-    notify_email: str | None = None,
-    last_run: str | None = None,
-    next_run: str | None = None,
-) -> int:
-    """Create a new TSCM sweep schedule."""
-    with get_db() as conn:
-        cursor = conn.execute('''
-            INSERT INTO tscm_schedules
-            (name, baseline_id, zone_name, cron_expression, sweep_type,
-             enabled, last_run, next_run, notify_on_threat, notify_email)
-            VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
-        ''', (
-            name,
-            baseline_id,
-            zone_name,
-            cron_expression,
-            sweep_type,
-            1 if enabled else 0,
-            last_run,
-            next_run,
-            1 if notify_on_threat else 0,
-            notify_email,
-        ))
-        return cursor.lastrowid
-
-
-def get_tscm_schedule(schedule_id: int) -> dict | None:
-    """Get a TSCM schedule by ID."""
-    with get_db() as conn:
-        cursor = conn.execute(
-            'SELECT * FROM tscm_schedules WHERE id = ?',
-            (schedule_id,)
-        )
-        row = cursor.fetchone()
-        return dict(row) if row else None
-
-
-def get_all_tscm_schedules(
-    enabled: bool | None = None,
-    limit: int = 200
-) -> list[dict]:
-    """Get all TSCM schedules."""
-    conditions = []
-    params = []
-
-    if enabled is not None:
-        conditions.append('enabled = ?')
-        params.append(1 if enabled else 0)
-
-    where_clause = f'WHERE {" AND ".join(conditions)}' if conditions else ''
-    params.append(limit)
-
-    with get_db() as conn:
-        cursor = conn.execute(f'''
-            SELECT * FROM tscm_schedules
-            {where_clause}
-            ORDER BY id DESC
-            LIMIT ?
-        ''', params)
-        return [dict(row) for row in cursor]
-
-
-def update_tscm_schedule(schedule_id: int, **fields) -> bool:
-    """Update a TSCM schedule."""
-    if not fields:
-        return False
-
-    updates = []
-    params = []
-
-    for key, value in fields.items():
-        updates.append(f'{key} = ?')
-        params.append(value)
-
-    params.append(schedule_id)
-
-    with get_db() as conn:
-        cursor = conn.execute(
-            f'UPDATE tscm_schedules SET {", ".join(updates)} WHERE id = ?',
-            params
-        )
-        return cursor.rowcount > 0
-
-
-def delete_tscm_schedule(schedule_id: int) -> bool:
-    """Delete a TSCM schedule."""
-    with get_db() as conn:
-        cursor = conn.execute(
-            'DELETE FROM tscm_schedules WHERE id = ?',
-            (schedule_id,)
-        )
-        return cursor.rowcount > 0
-
-
-def is_known_good_device(identifier: str, location: str | None = None) -> dict | None:
-    """Check if a device is in the known-good registry for a location."""
-    with get_db() as conn:
-        if location:
-            cursor = conn.execute('''
+def delete_known_device(identifier: str) -> bool:
+    """Remove a device from the known-good registry."""
+    with get_db() as conn:
+        cursor = conn.execute(
+            'DELETE FROM tscm_known_devices WHERE identifier = ?',
+            (identifier.upper(),)
+        )
+        return cursor.rowcount > 0
+
+
+# =============================================================================
+# TSCM Schedule Functions
+# =============================================================================
+
+def create_tscm_schedule(
+    name: str,
+    cron_expression: str,
+    sweep_type: str = 'standard',
+    baseline_id: int | None = None,
+    zone_name: str | None = None,
+    enabled: bool = True,
+    notify_on_threat: bool = True,
+    notify_email: str | None = None,
+    last_run: str | None = None,
+    next_run: str | None = None,
+) -> int:
+    """Create a new TSCM sweep schedule."""
+    with get_db() as conn:
+        cursor = conn.execute('''
+            INSERT INTO tscm_schedules
+            (name, baseline_id, zone_name, cron_expression, sweep_type,
+             enabled, last_run, next_run, notify_on_threat, notify_email)
+            VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?)
+        ''', (
+            name,
+            baseline_id,
+            zone_name,
+            cron_expression,
+            sweep_type,
+            1 if enabled else 0,
+            last_run,
+            next_run,
+            1 if notify_on_threat else 0,
+            notify_email,
+        ))
+        return cursor.lastrowid
+
+
+def get_tscm_schedule(schedule_id: int) -> dict | None:
+    """Get a TSCM schedule by ID."""
+    with get_db() as conn:
+        cursor = conn.execute(
+            'SELECT * FROM tscm_schedules WHERE id = ?',
+            (schedule_id,)
+        )
+        row = cursor.fetchone()
+        return dict(row) if row else None
+
+
+def get_all_tscm_schedules(
+    enabled: bool | None = None,
+    limit: int = 200
+) -> list[dict]:
+    """Get all TSCM schedules."""
+    conditions = []
+    params = []
+
+    if enabled is not None:
+        conditions.append('enabled = ?')
+        params.append(1 if enabled else 0)
+
+    where_clause = f'WHERE {" AND ".join(conditions)}' if conditions else ''
+    params.append(limit)
+
+    with get_db() as conn:
+        cursor = conn.execute(f'''
+            SELECT * FROM tscm_schedules
+            {where_clause}
+            ORDER BY id DESC
+            LIMIT ?
+        ''', params)
+        return [dict(row) for row in cursor]
+
+
+def update_tscm_schedule(schedule_id: int, **fields) -> bool:
+    """Update a TSCM schedule."""
+    if not fields:
+        return False
+
+    updates = []
+    params = []
+
+    for key, value in fields.items():
+        updates.append(f'{key} = ?')
+        params.append(value)
+
+    params.append(schedule_id)
+
+    with get_db() as conn:
+        cursor = conn.execute(
+            f'UPDATE tscm_schedules SET {", ".join(updates)} WHERE id = ?',
+            params
+        )
+        return cursor.rowcount > 0
+
+
+def delete_tscm_schedule(schedule_id: int) -> bool:
+    """Delete a TSCM schedule."""
+    with get_db() as conn:
+        cursor = conn.execute(
+            'DELETE FROM tscm_schedules WHERE id = ?',
+            (schedule_id,)
+        )
+        return cursor.rowcount > 0
+
+
+def is_known_good_device(identifier: str, location: str | None = None) -> dict | None:
+    """Check if a device is in the known-good registry for a location."""
+    with get_db() as conn:
+        if location:
+            cursor = conn.execute('''
                 SELECT * FROM tscm_known_devices
                 WHERE identifier = ? AND (location = ? OR scope = 'global')
             ''', (identifier.upper(), location))
diff --git a/utils/dependencies.py b/utils/dependencies.py
index 256b995..144771f 100644
--- a/utils/dependencies.py
+++ b/utils/dependencies.py
@@ -443,6 +443,38 @@ TOOL_DEPENDENCIES = {
                 }
             }
         }
+    },
+    'gsm': {
+        'name': 'GSM Intelligence',
+        'tools': {
+            'grgsm_scanner': {
+                'required': True,
+                'description': 'gr-gsm scanner for finding GSM towers',
+                'install': {
+                    'apt': 'Build gr-gsm from source: https://github.com/ptrkrysik/gr-gsm',
+                    'brew': 'brew install gr-gsm (may require manual build)',
+                    'manual': 'https://github.com/ptrkrysik/gr-gsm'
+                }
+            },
+            'grgsm_livemon': {
+                'required': True,
+                'description': 'gr-gsm live monitor for decoding GSM signals',
+                'install': {
+                    'apt': 'Included with gr-gsm package',
+                    'brew': 'Included with gr-gsm',
+                    'manual': 'Included with gr-gsm'
+                }
+            },
+            'tshark': {
+                'required': True,
+                'description': 'Wireshark CLI for parsing GSM packets',
+                'install': {
+                    'apt': 'sudo apt-get install tshark',
+                    'brew': 'brew install wireshark',
+                    'manual': 'https://www.wireshark.org/download.html'
+                }
+            }
+        }
     }
 }