In this episode of HakTip, Shannon introduces Maltego, a data collection program for penetration testers.
Maltego is a program built into Kali Linux that lets you do reconnaissance on any person, by scraping up data from all publicly available areas of the Internets. Maltego is used for information gathering and data-mining, and can be useful for anyone who needs to gather data on a person or company.
For my series on Maltego, I’m going to be using my Kali Linux VM. To open Maltego, just type maltego into the command line.
Go through the registration process for the free community version of Maltego and sign up! There is also a paid version that can be used for more detailed outputs and for penetration testing in a business setting.
Open a blank graph and you’re golden! You’ll notice this thing called a palette on the left side. This will show you all sorts of entities we can gather data on. You can drag and drop whatever entity you want to mine data on. Whatever item you end up dragging and dropping onto your graph will end up being a node. For my example, we’ll gather data on hak5.wpengine.com. You can also change this by double clicking inside the domain box on your new graph. But my graph still looks kind of boring so lets gather some specific data. To do so, you’ll right click on your domain box, then choose to “run transforms”. This means it’ll run a search based on your option.
So now that you’ve gotten a chance to check out the options under run transforms, choose one that you are interested in learning about. First off, I can run a transform on the email domain associated with Hak5.org and I find that there’s a few out there available publicly. Next, I can look for the website address, which should be hak5.wpengine.com. I can right click on the server looking icon and choose the transform labeled ToServerTechnologiesWebsite. Now when it’s done, we can see Hak5 is running on Apache, with wordpress, PHP and Google Analytics both added.
Why is this useful? Well, if Hak5 hasn’t updated their WordPress creds in a while, there may be a vulnerability there. Maltego gives you a fast and simple way to search for specific information on a site, in this example Hak5, and return valuable information in seconds.
Let me know what you think. Send me a comment below or email us at Tips@hak5.org. And be sure to check out our sister show, Hak5 for more great stuff just like this. I’ll be there, reminding you to trust your technolust.