1
00:00:00,720 --> 00:00:05,760
‫Maltego is an interactive data mining tool that renders directed graphs for link analysis.

2
00:00:06,420 --> 00:00:11,820
‫The tool is used in online investigations for finding relationships between pieces of information from

3
00:00:11,820 --> 00:00:14,070
‫various sources located on the internet.

4
00:00:14,820 --> 00:00:21,240
‫The focus of Maltego is analyzing real world relationships between information that is publicly accessible

5
00:00:21,240 --> 00:00:21,900
‫on the internet.

6
00:00:22,410 --> 00:00:28,080
‫This includes footprinting, internet infrastructure, as well as gathering information about the people

7
00:00:28,080 --> 00:00:29,520
‫and organizations who own it.

8
00:00:30,420 --> 00:00:36,750
‫Maltego can be used to determine the relationships between the following entities people, names, email

9
00:00:36,750 --> 00:00:46,140
‫addresses and aliases groups of people, social networks, companies, organizations, websites, internet

10
00:00:46,140 --> 00:00:53,490
‫infrastructure such as domains, DNA names, NetBlocks and IP addresses, affiliations, documents and

11
00:00:53,490 --> 00:00:54,030
‫files.

12
00:00:54,540 --> 00:00:59,790
‫Connections between these pieces of information are found using open source intelligence OSINT techniques

13
00:01:00,120 --> 00:01:06,750
‫by querying sources such as DNS records, who is records, search engines, social networks, various

14
00:01:06,780 --> 00:01:09,870
‫online APIs and extracting metadata.

15
00:01:10,560 --> 00:01:16,320
‫Maltego provides the results in a wide range of graphical layouts that allow for clustering of information,

16
00:01:16,710 --> 00:01:19,590
‫which makes seeing relationships instant and accurate.

17
00:01:20,040 --> 00:01:24,840
‫This makes it possible to see hidden connections even if there are three or four degrees of separation

18
00:01:24,840 --> 00:01:25,290
‫apart.

19
00:01:25,920 --> 00:01:27,690
‫You can download the Maltego.

20
00:01:27,690 --> 00:01:35,460
‫See, that's the community edition from www.youtube.com, and it's embedded in Kali Linux.

21
00:01:36,030 --> 00:01:37,680
‫Let's see Maltego in action.

22
00:01:38,130 --> 00:01:42,480
‫Go to Kali Linux and open a terminal screen and type multi.

23
00:01:43,170 --> 00:01:48,690
‫That's Emma LTE jockey to run Maltego Community Edition embedded.

24
00:01:58,300 --> 00:02:04,270
‫First, we choose a machine to run the different machine options specified for different purposes.

25
00:02:04,720 --> 00:02:09,550
‫For example, there's a Twitter digger machine to work on a Twitter account and analyze the tweets.

26
00:02:10,180 --> 00:02:16,030
‫Let's choose Footprint L-1 machine this time, which is a fast and basic footprint for the target domain.

27
00:02:16,930 --> 00:02:21,820
‫The second step is to specify the target domain when we click the finish button.

28
00:02:22,030 --> 00:02:24,370
‫It's going to start to collect data.

29
00:02:25,090 --> 00:02:29,740
‫Now in the community edition of Maltego, the results are limited to 12 entries.

30
00:02:35,120 --> 00:02:37,190
‫It shows the results in graph mode.

31
00:02:43,170 --> 00:02:47,700
‫We can zoom out to see the entire picture or zoom in to focus on specific results.

32
00:03:09,020 --> 00:03:14,180
‫Now, if you select a node and right click on it, you can see all the transforms you're able to run

33
00:03:14,180 --> 00:03:18,460
‫for, that node transforms a grouped according to their purposes.

34
00:03:21,300 --> 00:03:27,150
‫You can expand a group and select a single transform to run, or you could run a group of transforms

35
00:03:27,150 --> 00:03:27,870
‫at once.

36
00:03:28,590 --> 00:03:33,000
‫You can configure a transform before the run or save a transform in your favorites list.

37
00:03:35,280 --> 00:03:39,990
‫Let's run the mirror, call and email addresses found transform at this time.

38
00:03:40,620 --> 00:03:42,630
‫The results start to come in about a minute.

39
00:03:43,200 --> 00:03:46,410
‫Let's see some more about Maltego while we're waiting.

40
00:03:46,770 --> 00:03:48,420
‫There are different graph types.

41
00:03:48,420 --> 00:03:50,170
‫You can choose to see the results.

42
00:03:50,550 --> 00:03:56,790
‫If you zoom out the graph under 30 percent, the entities are shown as the dots instead of meaningful

43
00:03:56,790 --> 00:03:57,330
‫symbols.

44
00:03:58,020 --> 00:04:05,310
‫All the colors of the DOT point to a specific type, email addresses, websites, domain names and more.

45
00:04:05,940 --> 00:04:09,090
‫You can see the color legend in the lower right corner.

46
00:04:14,890 --> 00:04:18,130
‫The results of the transform we ran a minute ago are here now.

47
00:04:22,520 --> 00:04:28,550
‫You can use the toggle full screen button or simply press Alt Plus Enter buttons to toggle the graph

48
00:04:28,550 --> 00:04:29,300
‫to full screen.

49
00:04:29,690 --> 00:04:35,720
‫You can select the email addresses node and see the collected email addresses listed in the detailed

50
00:04:35,720 --> 00:04:36,500
‫view window.