Thursday, 24 July 2014

[Kali Linux] Maltego - Infrastructure Information Gathering








In this tutorial, i'm going to show you how to gather information using Maltego in Kali Linux.

Firstly, open up Maltego.


Applications>Kali Linux>Top 10 Security Tools>Maltego





If this is your first time using it, you need to complete the registration. Once the registration complete. Click on the menu button and select new.




A blank screen will appear. Later, click on pallete. In this tutorial i'm going to show how to gather information from infrastructure. So, click infrastructure, drag and drop "Domain" into your project.




You will see a earth icon with a domain name. Double click on it and change the domain name to your target. In this tutorial, my target is www.papagomo.com




Close that window and let's start gathering information. Right click on the earth icon, choose Run Transform and then All transform , followed by your choice. In this case, i will use  To phone number [using search engine].




If the result was found, it will produce output like this picture.If nothing appear, that mean not result found.




There are 4 phone numbers, but it doesn't mean all of them belongs to the webmaster, but you can make a try. Now i'm going to use the phone number to get more information. So i will use the phone number to transform it into url. 




After i transform it into URL using search engine, i got a Facebook page. Maybe it's belong to the phone number owner and the webmaster.





I think that's all for now. I hope you understand how to use Maltego.