What is Maltego?
As your organization continues to grow, people and hardware are deployed to ensure it remains up and running, but the threat picture of your “environment” isn’t always clear or complete. In fact, it’s not what we know that is harmful, it’s what we don’t know that causes the most damage. That being said, how do you create a clear profile of your current infrastructure deployment? What are the leading tool platforms designed to offer the granularity necessary to understand the complexities of your network, both physical and resource-based?
Maltego_is a unique platform developed to provide a clear picture of the threat environment that an organization owns and operates. Maltego’s unique advantage is to demonstrate the complexity and severity of individual points of failure, as well as the trust relationships that currently exist within your infrastructure.
The unique perspective that Maltego_offers to both network and resource-based entities is the aggregation of information published across the Internet – whether it’s the current configuration of a router at the edge of your network or the current whereabouts of your vice president on an international visit, Maltego_can look up that information, aggregate and visualize.
What can Maltego do for me?
Maltego_can be used for the information-gathering phase of all security-related work. It saves you time and allows you to work more accurately and smarter.
Maltego_helps you in your thinking process by visually showing the interconnected links between the items you are looking for.
Maltego_gives you a much more powerful search and gives you smarter results.
If access to “hidden” information determines your success, Maltego_can help you discover it.
Install Termux :
First, install a Linux OS like termux, and my Recommended installing kali Linux from there we will install this. Direct Termex apps will not work for this tool. First, install termux kali Linux on android phones and start vnc server. Maltego Tool
- Also Read: How to Install Kali Linux on Android Termux Without Root
- Also Read: How to Install & Run Ubuntu on Android Termux No Root
Once Kali Linux is successfully installed, Kali Linux will open the GUI and run the command in the terminal.
Now we need to install_Maltego. After updating the apt database, we can install maltego using apt-get by running the following command:
After running the command & downloading some 200 – 300MB packages will be downloaded and Tulchis will be successfully installed if it is not then you will have to manually download and install the file.
Following Linux os install manually command :
Install Linux OS :
Automatic installation :
Install maltego Using ap-get
After opening the Linux first, it will open the terminal and update and update. and run the command in the terminal.
Now we need to install Maltego. After updating the apt update, we can install maltego using apt-get by running the following command:
After running the command & downloading some 500MB package will be downloaded and will be successfully installed if it is not then you will have to manually download and install the file.
Install maltego Using aptitude
To use this method, you may need to install aptitude first, as aptitude is usually not installed by default on Kali Linux. Update the apt database with aptitude using the following command.
After updating the apt database, we can install maltego using aptitude by running the following command:
Manually installation :
Please visit maltego.com and download the appropriate Maltego_installer from our download page. The correct operating system for your computer should be detected automatically, or the appropriate operating system can be selected using the ribbon buttons for Windows, Linux, or Mac.
Maltego_is available as a .DEB package (ideal for Debian-based operating systems) as well as package (ideal for systems that can use the RPM Package Manager) and a .zip archive. Each of these file types can be selected from the FILE TYPE drop-down list when Linux is selected:
.DEB (Debian package)
Debian packages can be installed either by double-clicking the file in a window manager (such as KDE) or by allowing the window manager’s installer to install the package.
Alternatively, you can also install it from the command line as follows:
Setup Maltego :
The easiest way to access this application is to type maltego in our terminal, we can also open it from the Kali Linux Application menu.
When we open Maltego_for the first time, we are presented with a product selection page where we can buy different versions of Maltego, but the community edition of Maltego_is free for everyone, so we select it (Maltego CE) and click run, as shown in the following screenshot:
After clicking on “RUN” we get to the Maltego_configuration window. Here we have to log in for the first time and set up our Maltego. First, we need to accept Maltego’s terms and conditions, as we can see in the following screenshot:
In the screenshot above, we can see that we check ✅ the “Accept” box and click “Next”.
After that we got the login screen which we can see in the following screenshot:
In the screenshot above, we can see the note “LOGIN: Sign in to use the free online version of Maltego.” So we have to log in here. But before that, we need to register to create a login. We have to click on “Register” and the registration page will open in our browser or we can click here to go to the same registration page.
Here we have to fill in everything and then they will send an activation link to our email address. For security reasons, we use temporary mail services and we received the activation mail and activated it. After activating it, we have to log in from Maltego.
Then we just need to click on “Next”, “Next”, “Next” and “Next” and our Maltego will open in front of us, as we can see in the following screenshot.
Run & Use Maltego :
Maltego is an open-source forensic intelligence application. Which helps you get more accurate information in a smarter way. Simply put, it is an information-gathering tool.
Maltego is one of the most popular OSINT frameworks for personal and organizational intelligence. It is a GUI tool that provides the ability to gather information about any individual by extracting information that is publicly available on the Internet through various methods. Maltego is also able to enumerate DNS, brute force normal DNS, and collect social media data in an easy-to-read format.
Features of Maltego:
- It is used to collect information for security-related work. It saves you time and allows you to work smarter and more accurately.
- It helps you in your thinking process by showing the interconnected links between all the items you are looking for.
- If you want to get hidden information, (Maltego) can help you discover it.
- It is pre-installed (in the information gathering section) in Kali Linux.
Using Maltego in Kali Linux
1. Open Terminal and type “
maltego” to launch Maltego:
The chart is Maltega’s masterpiece. The first step in creating a graph is to select an entity (an eg person, domain name, etc.).
- Click on the square box with the plus sign (top left corner) to start a new chart.
- Right below the square box with the plus sign is the Entity Palette. Select the desired entity from it and drag it to the “New Chart” sheet.
In my case, I am going to explore “onlinehacking.in” – domain. But keep in mind that it doesn’t have to be a domain! It can be anything you want, just scroll through the entity palette to find what you’re trying to find.
Click the box in the entity circle. In my case, it defaults to paterva.com. I click on it and change it to onlinehacking.in.
To see the types of scan you can perform, you have to click the entity right.
New users almost always click “All Transforms“; however, you shouldn’t do that. You end up with a mess that you can’t analyze. Instead, you should click one transform at a time. You can run multiple scans, no problem, but one at a time. First, perform the transformation and then analyze the results. Then perform another transformation, analyze the results, and so on.
In my case, I’ll use the “To Web” transformation. This makes it easy to find things about the web.
Deleting results :
Now suppose you’ve applied a transformation you didn’t originally want; you can undo it with Ctrl+Z or delete the results entirely. You don’t have to start over; rather, you just select the results you want to delete and hit the delete button. This will delete the selected results from your chart.
Gathering information is one of the most important steps and Maltego is one of the best tools to analyze almost anything. You can choose to analyze the available data about people, domains, cryptocurrencies, weapons, etc… Maltego is a massive program, and although the best features are only available in the paid version, you can get quite a lot out of the free version. All in all, Maltego is worth a try!
Kali Linux is the OS of choice for penetration testers. It is packed with a number of tools that can be used during the 5 phases of penetration testing: exploration, scanning, gaining access, persistence, and finally analysis and reporting. And while there are a million tools on Kali Linux, some of them stand out. They stand out because they are consistently and very commonly used. One such tool is Maltego. In this tutorial, we will learn how to use Maltego with Kali Linux.
Maltego is an open-source intelligence tool (OSINT) for graphical link analysis used in intelligence gathering. In fact, you can collect information about almost anything – people, chemical weapons, IP addresses, terrorists, bank account numbers, etc… Maltego uses transformations to get the information you want. Transform Hub is a large number of websites where data is downloaded (eg Shodan, VirusTotal, etc…). In most cases, you have to install each transformation manually, as they are not pre-installed. Transformations are further pieces of code that take input and emit visual output that is related to the input in some way. The extracted data is then visually rendered onto a blank canvas. Maltego contains hundreds of transformations. And as such, you can browse the data in real-time.