Intelligence and information collection at a glance
Maltego uses link analysis to build a comprehensive visual overview of your incidents. You can explore data relationships intuitively and dynamically using various layouts to establish informed, effective response plans.
With Maltego, our Threat Intel team can conduct network footprinting and visualization faster and better than before, allowing us to stay ahead.
Jaya Baloo
Avast
Easily and securely access all your data in one single interface
Maltego reduces the complexity of using multiple tools by integrating otherwise siloed data sources—SIEMs, logs, ticketing systems, internal databases, threat intelligence, OSINT, vulnerability scanners—you name it. With the Enterprise on-premise deployment plan, we ensure the security of sensitive internal data with industry standard authentication for impermeable access control.
Built to support multiple incident response workflows
IOC Collection for Specific Threats
Gather IOCs associated with particular threat actors using OSINT data, regex searches, as well as threat intelligence feeds.
Profiling Threat Actor Infrastructure
Map a malicious activity such as phishing to existing threat actors or campaigns and uncover a comprehensive overview of their infrastructure.
Profiling Threat Actors
Generate intelligence or analyze a threat actor’s profile using social media intelligence.
Attacks and TTPs Analysis
Generate intelligence about previous incidents or profile similar working malware with current and past behaviors of the adversaries.
Vulnerability & Attach Surface Assessment
Evaluate a new vulnerability by identifying IOCs of ongoing malicious activities and scanning public and internal assets for exposure.
Frequently asked questions
Where is the data stored, and who has access to the data?
Are there any security and privacy concerns when using Maltego?
What are the differences between Maltego Pro and Maltego Enterprise?
Maltego Pro is designed for individuals, while Maltego Enterprise is a more comprehensive version designed for organizations and teams, offering collaboration enablement, dedicated Customer Success Managers, enterprise support SLAs, guided onboarding and deployment, custom engineering, and access to advanced customized training courses.
To find out more about access to data sources and the number of Transforms allowance in each plan, you can download the overview here.
More information on Maltego plans can be found here.
What deployment options are available for Maltego?
Maltego Enterprise supports both cloud and on-premise deployment options. Users can choose the deployment option based on their requirements and preferences, including on-premise, their own cloud, or Maltego’s cloud, or even work completely offline.
These flexible deployment options are designed to allow enterprise teams to focus on investigations while Maltego takes care of setup and maintenance. Please note that these options are not available in the Maltego Pro plan.
What training is available for Maltego users?
All Maltego users have access to our comprehensive online documentation, tutorials, and handbooks. Maltego offers online on-demand learning through a platform called Spark.
Access to on-demand courses is included in all Enterprise subscriptions. Pro customers get free access to an introductory course and can purchase other courses separately. Enterprise customers also have the option for personalized training and learning guided by Maltego subject matter experts.
What is the onboarding process like for Maltego?
How does Maltego access data, and how can I use data in Maltego?
Maltego can access data from various public sources and private databases through its integration with different APIs. Users can connect to these APIs to fetch and analyze data within the Maltego platform.
We offer different models of data access, namely click-and-run, free data, Maltego data subscriptions (or data bundles), and paid API keys, which need to be purchased separately. Find more details here.
Does Maltego have its own dataset?
Maltego itself does not have a proprietary dataset. Instead, it facilitates access to various public sources and private databases by combining different data sources within one user interface.
Users can also import and analyze data from other sources, including internal sources, using the tool’s functionalities.
A great strength of Maltego is the ease of gaining insights from multiple, disparate data sets. In the past couple of years, Maltego has been increasingly developed towards a relevant market place for data and I am excited to see how this will evolve in the future.