Increase the Speed and Precision of Complex SOC Investigations
Access all your data in one UI.
Integrate internal data such as Splunk, ServiceNow, ELK, etc.
Enrich your investigations easily with hard-to-ingest OSINT data by the click of a button.
Integrate Threat Intel Feed providers such as CrowdStrike, Recorded Future, Flashpoint and more.
Quickly analyze your data.
Quickly identify relevant data from SIEM alerts and enrich them with data relevant to your investigation.
Swiftly assess if a SIEM alert is a false positive or if there is a real threat with Maltego’s powerful visualization capabilities.
Automate repetitive investigations using Maltego Machines.
Collaborate with your team.
Easily collaborate and merge insights with your teams through live graph sharing.
Share an easy-to-understand threat overview and investigation report within your organization.
Easily integrate with existing workflows by pushing new insights into your SIEM or your ticketing system.
Optimize your Investigation Workflows
Improve legitimization and false positive identification of alerts provided by security systems
- Effectively contextualize alerts with easy integration of disparate private and third-party threat data and intelligence for a more efficient escalation process.
- Improve SIEM detection rules and policies with new TTPs, IOCs and other relevant data through analysis with Maltego.
Perform more efficient evaluations on the scope and severity of incidents and focus more time on remediation
- Seamlessly visualize data from SIEM systems to human analysis for a faster identification of compromised systems.
- Easily assimilate and correlate data for future events, as well as higher-level reporting for different teams and stakeholders with shareable node graphs.
Conduct a more effective investigation of anomalies and evidence left by threat actors in your networks
- Determine root causes and remediate APTs, unknown vulnerabilities and security gaps that may compromise the enterprise network and assets with Maltego’s integration and visual analysis capabilities.
- Use Maltego for day-to-day tasks such as pentesting and contextualization of disparate threat intelligence and security data.
Featured Data Sources
Simplify and expedite your investigation by seamlessly integrating your preferred SIEM, threat intelligence provider or internal ticketing systems into Maltego.
Make it your own
Maltego Desktop Client
The Maltego Desktop Client is the visual interface in which all gathered information is linked and combined. It is a Java application that runs on Windows, Mac, and Linux. Maltego allows users to create graphs step-by-step in an intuitive point-and-click logic. There are currently 3 editions of the Maltego Client:
Maltego features over 58 data integrations from over 35 data partners. This is one of the key reasons customers repeatedly turn to Maltego to empower their analysts and investigators with modern link-analysis software. The Maltego Transform Hub enables you to choose from a variety of data integrations, including OSINT data sources, CaseFile Entities, paid access to commercial Transforms, exclusive access to integrations within Enterprise plans and more.
Deployment & Infrastructure
By default, Maltego uses our public Transform server . However, over time, we recognized the importance of flexibility in choosing the right deployment infrastructure for our enterprise users. Enterprises require deployment options that are not only performant but also compliant with the needs and guidelines of their organizations.
Support & Services
Whether you are just getting started or mastering advanced features, our support team is here for you! Users can simply contact our support team through our support site and email. Maltego also provides a wide range of services to its enterprise customers to make the procurement, deployment, onboarding, and maintenance of Maltego a smooth ride.
Learning & Training
Whether you are just starting out with Maltego, or are a seasoned user, we offer the most suitable learning solutions to help you unlock Maltego’s investigative capabilities. As a Maltego user, you can benefit from a range of resources for self-paced learning: Free online documentation, free and paid on-demand courses, and in-person training for beginners or advanced users.
Maltego simplifies and expedites your investigations.
Get access to our demo to see how we can help your business.