information gathering with maltego - spylogic.net · 2008-11-05 · information gathering with...
TRANSCRIPT
![Page 1: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/1.jpg)
Information Gatheringwith Maltego
Tom EstonInformation Security Forum
October 2008
![Page 2: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/2.jpg)
What is Maltego?• Data mining and
information gatheringtool
• Identify keyrelationshipsbetween informationand find unknownrelationships
• Uses “transforms”
![Page 3: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/3.jpg)
What does Maltego do?
• Helps determine real world links between…– People– Social Networks– Companies/Organizations– Web sites– Internet Infrastructure (DNS, Domains, Netblocks)– Phrases– Documents and files
![Page 4: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/4.jpg)
How does it work?
![Page 5: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/5.jpg)
Maltego Transforms
![Page 6: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/6.jpg)
What is logged?
• API key• IP Address (yours)• The transform executed• The time it executed• Your user ID (which gives first name, last name
and email address)• The questions asked or the results are NOT
logged– Except for a few transforms that use web services…
![Page 7: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/7.jpg)
What can it do for you?
• Information gathering phase of all securityrelated work– Assessments– Investigations– Public information about a company or person
• Saves time• Easier to use then Google “hacking”• Hits more then just Google!
![Page 8: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/8.jpg)
Where to get it?
• Community edition– Download via paterva.com also found on
Backtrack 3– No saving, limited to 75 transforms, etc…
• Full version has no limitations– $430 per year
• Runs on Linux, OS X, Windows
http://www.paterva.com/maltego/
![Page 9: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/9.jpg)
More Information
• Room362.com– Maltego 2 and beyond
http://www.room362.com/archives/225-Maltego-2-and-beyond-Part-1.html
• EthicalHacker.net– Chris Gates Maltego Series
http://www.ethicalhacker.net/content/view/202/1/
![Page 10: Information Gathering with Maltego - SpyLogic.net · 2008-11-05 · Information Gathering with Maltego Tom Eston Information Security Forum October 2008. What is Maltego? •Data](https://reader030.vdocuments.site/reader030/viewer/2022040323/5e6789d297eb267d3205c638/html5/thumbnails/10.jpg)
Demo…