nest kali linux tutorial: maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · nest kali linux...
TRANSCRIPT
![Page 1: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/1.jpg)
NEST Kali Linux Tutorial:
Maltego
“Maltego is an open source intelligence and forensics
application. It will offer you timeous mining and gathering
of information as well as the representation of this
information in an easy to understand format.”
Catherine Zittlosen
November 2013
http://www.paterva.com/web6/products/maltego.php
![Page 2: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/2.jpg)
Introduction
• Maltego offers an aggregation of information
posted all over the internet - whether it’s the
current configuration of a router poised on the
edge of your network or the current whereabouts
of your Vice President on his international visits,
Maltego can locate, aggregate and visualize this
information.
• Maltego offers the user with unprecedented
information. Information is leverage. Information
is power. Information is Maltego.
![Page 3: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/3.jpg)
Introduction
• Maltego allows you to enumerate network and
domain information like:
– Domain Names, Whois Information, DNS Names,
Netblocks, IP Addresses, etc
• Maltego also allows you to:
– Do simple verification of email addresses
– Search blogs for tags and phrases
– Identify incoming links for websites
– Extract metadata from files from target domains
![Page 4: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/4.jpg)
Introduction
• Maltego also allows you to enumerate People
information like:
– Email addresses associated with a person’s name
– Web sites associated with a person’s name
– Phone numbers associated with a person’s name
– Social groups that are associated with a person’s
name
– Companies and organizations associated with a
person’s name, etc
![Page 5: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/5.jpg)
Open Maltego
• Applications > Kali Linux > Information gathering > DNS Analysis > Maltego
![Page 6: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/6.jpg)
Login
• Because we are using Maltego for the first time, we need to
log in.
• Click “Next” at the prompt
![Page 7: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/7.jpg)
Login
• Login with the credentials provided (during
training session only).
• Click “Next”
![Page 8: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/8.jpg)
Login
• You will see a welcome message when you
have successfully logged in.
• Click “Next”, “Next”, and then “Finish"
![Page 9: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/9.jpg)
Setup
• You will begin to setup Maltego when you select
transform seeds.
• Click “Next”
![Page 10: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/10.jpg)
Update
• You need to update the transforms.
• Click “Finish”
![Page 11: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/11.jpg)
Run
• Click “Cancel” on the last setup step.
• We will do it manually.
![Page 12: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/12.jpg)
Domain Info
• Click on new icon for gathering the information
![Page 13: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/13.jpg)
Domain Info
• Expand Infrastructure (on the left) and drag
“Domain” into the “Main View”
![Page 14: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/14.jpg)
Domain Info
• Double click on domain icon and rename it to
“thinkgeek.com”
• Right click on domain icon and click
– Run Transform → All Transforms → To Website (Quick Lookup)
![Page 15: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/15.jpg)
Domain Info
• We are going to find the IP address of our target
website.
• Right click on the new icon that appeared
– Run Transform → Resolve to IP → To IP Address (DNS)
![Page 16: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/16.jpg)
Views
• You can change your view now. There are options Main
View, Bubble View, and Entity List. You can explore
these views for a different graphical representation.
• Also, note that there is a detail view and property view
pane on the right with more information.
![Page 17: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/17.jpg)
Email Addresses
• Right click on middle icon and then
– Run Transform → All Transforms → Mirror: Email
addresses found
• It may take a few minutes to populate the results
![Page 18: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/18.jpg)
Email Addresses
• You can see the email addresses now
![Page 19: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/19.jpg)
External Links
• Right click on target website icon and then
– Run Transform > Links in and out of site > Mirror:
External links found
• It may take a few minutes to populate the results
![Page 20: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/20.jpg)
Clear Info
• You can drag and select the icons you want to
remove.
• You can also type “CTRL-A” to select all and
then click “Delete” on your keyboard to remove
everything.
![Page 21: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/21.jpg)
Facebook Profiles
• Expand ‘Personal’ in the left view
• Drag “Person” into the “Main View”
• Double click on the person icon and rename it to
someone – eg. your name.
• Right click on target person and then
– Run Transform > All Transforms > ToFacebookAffiliation
• Type “Yes” or “No” based on how many results you
want.
– “No” is more likely to find the correct result but will have many wrong hits as well
• Check “I accept the above disclaimer”
![Page 22: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/22.jpg)
Lookup Email Addesses
• Right click on target person and then
– Run Transform > All Transforms > To Email Address
[Verify common]
• Right click again and then
– Run Transform > All Transforms > To Email Address
[using Search Engine]
• Type a space into both fields and click “Run!”
• You can play around with the other Options and
test other things on the left Palette.
![Page 23: NEST Kali Linux Tutorial: Maltegonest.unm.edu/files/7113/8379/8002/maltego.pdf · NEST Kali Linux Tutorial: Maltego “Maltego is an open source intelligence and forensics application](https://reader031.vdocuments.mx/reader031/viewer/2022022502/5aab5d417f8b9a693f8bccac/html5/thumbnails/23.jpg)
References
• http://geekyshow.blogspot.com/2013/07/how-to-
use-maltego-in-kali-linux.html
• http://www.paterva.com/web6/documentation/ind
ex.php