Skip to main content

Posts

Showing posts from 2019

See you on maltego.com

Dear Friends of Paterva,

This post is both ‘a last’ and ‘a first’. For a last time, you receive an official message from the Paterva team. For the first time, we invite you to visit maltego.com as the new go-to source regarding all information about Maltego.

As some of you may know, a lot has happened at Paterva over the last two years. After having worked as a small team out of South Africa for ten years, we decided to enter the second decade of our product’s life, all equipped to grow the Maltego product and bring it to even more customers world-wide. This was in 2017. By now Maltego code can be found on many more desktops of security researchers, investigators and hackers alike.

When you are moving quickly, however, it is sometimes easy to forget how many steps you have already taken. So, before we tell a bit more about the journey ahead, let’s take a short trip down memory lane and shed light on what happened so far.
A big "Thank you!" to everyone who supported us The i…

Finding fake news networks with Dataprovider.com transforms

Dataprovider.com has joined the list of Hub Partners available to all Maltego customers, and best of all: anyone can try it out for free today!

Dataprovider.com transforms provide you with access to one of the largest databases of public website data in the world. The Dataprovider.com directory contains 280 million domains, 30 to 50 pages deep, and holds over 200 data variables for each website. You can use this data to discover new pathways through networks of websites and gather unique insights into online domains.

Without WHOIS data it’s difficult to find detailed information on who owns a website. The Dataprovider.com transforms in the Maltego Transform Hub give you the tools to find incoming links, companies, IP addresses, phone numbers, e-mail addresses and social profiles of all entities within a network. Take a look at the full list of transforms here.

To get you started on working with Dataprovider.com’s transforms, let’s look at one example of how we unravel the global netw…

Machines are back in the Transform menu!

Due to popular demand, machines are back in the Transform menu! Back when machines were first introduced, that is where they lived – right alongside all the transforms. A decision was later made to simplify the menu, but we have heard from you that we need to make them more visible and accessible again.


In Maltego version 4.2.4, machines are back on the top-level of the Transform menu. When you right-click to run a transform, all machines that are compatible with the selected input-entity type will be shown in a coloured set named “Machines”.

This will hopefully make it easier to discover the machines that come pre-installed with Maltego as well as those that our fantastic hub-partners provide.
Large Graph exports It seems that some of our users love to create large graphs. In the past, if you wanted to export such a graph as a PDF or an image, you were limited to relatively small sizes which made the saved file very blurry.

In version 4.2.4, we added a few more options to help with …

A Step Towards Stealth Mode

During an investigation, it is often important to ensure that whatever you do, you do not “touch” the target. For example, if you are investigating a particular server, you do not want to leave a trace in the traffic logs that you were there.

It is sometimes enough if it is just not known that you were there, in other words that traffic originated from your network. Other times it would be preferable if nobody was there, for example if the URL was embedded in Malware and acts as a kill-switch of some description (https://www.wired.com/2017/05/accidental-kill-switch-slowed-fridays-massive-ransomware-attack/).

In general, the Maltego client does not contact any servers directly, and only via the transform servers such as the CTAS. One exception to this is when icons are fetched by the client itself to show on the graph, such as with the Image entity loading a preview of a URL, and more recently with the Overlay icons introduced in the previous release. This includes the Favicon overlay…

Fun with Flags

...with Dr Sheldon Cooper, Dr Amy Farrah Fowler and the new Maltego 4.2 Entity Overlays!

Did you know: Tuvalu, a country in the Pacific Ocean about midway between Australia and Hawaii, risks being wiped from the map due to rising sea waters? The country’s highest point is only 5m above sea level and they have a population of scarcely more than 10,000 people. The capital of Tuvalu, Funafuti, houses more than half the population and is an atoll encircling a 275 km² lagoon—the largest in Tuvalu.

Tuvalu’s flag contains the Union Flag in the upper left, with a sky-blue background and nine stars representing the nine islands that form part of Tuvalu. The nine stars are geographically correct, if you point the top of the flag towards the east.

Another relatively unknown country which also used to be under British Colonial Rule, on the other side of the world, is Lesotho. Lesotho is the only independent state in the world that lies entirely above 1,000m elevation. In fact, more than 80% of i…