Maltego Showcase

This page provides a couple of practical examples of what Maltego can be used for.

Maltego offers the flexibility of being able to integrate with almost any data source, because of this it can be found in a wide range of industries helping with various tasks from investigating fraud to network footprinting and OSINT. This page provides descriptions and links to a few write-ups using Maltego that demonstrate just some of the capabilities of the tool.


Network footprinting with Maltego

02/05/2016

This blog entry demonstrates how Maltego can be used to footprint a company's network using a range of OSINT techniques.


See Example

Social Network Monitoring

11/02/2015

Maltego can easily be used to monitor the activity of a list of Twitter users using machines in Maltego. The post also demonstrates how alerts can be set up in Maltego that are triggered on certain graph conditions.


See Example

Cyber crime investigation

12/06/2016

This post will demonstrate the ways to investigate and track real identity of an anonymous website operator promoting and selling DDOS attacking services for Bitcoins.


See Example

Malware
Attribution

12/04/2016

Uncovering a new Angler-Bedep actor with Maltego - written by @swannysec. This blog post is about finding correlations between email addresses related to Angler and Bedep distribution networks and domains they have registered. These domains are enriched with data from PassiveTotal and ThreatCrowd.


See Example

Website correlation with tracking codes

03/11/2015

Services like Google Analytics allow you to easily add functionality to your website by pasting a piece of JavaScript into your page's HTML. This often includes a tracking code that uniquely identifies the site owner's account with the service. This post demonstrates how websites can be connected by looking at these tracking codes in Maltego.


See Example

Querying Shodan in
Maltego

20/04/2016

Shodan is used by pentesters, security researchers and data scientists everywhere to analyze information about computers on the Internet. From webcams to SCADA to looking at where various SSL information in certificates can tie organisations together. This post shows how the power of link analysis from Maltego can assist in finding hidden relationships in data queried from Shodan.


See Example

Monitoring News Events
in Maltego

14/08/2015

This blog post presents the transforms in the NewsLink transform seeds for monitoring news posted online. NewsLink aims to assist in identifying and monitoring patterns in information posted on the Internet from a wide range of sources including Twitter, blog posts and news articles.


See Example

Visualising relationships in the Bitcoin blockchain

12/03/2016

This post demonstrates the use of the Bitcoin transforms that allows the user to find relationships between Bitcoin addresses in real-time from the blockchain.


See Example