RiskIQ PassiveTotal Transforms for Maltego
RiskIQ PassiveTotal expedites investigations by connecting internal activity, event, and incident indicator of compromise (IOC) artifacts to what is happening outside the firewall—external threats, attackers, and their related infrastructure.
This set of Transforms are based on the PassiveTotal API and include a number of helpful filters to improve analyst searches. Investigators can query PassiveTotal source and account data.
- With 100+ Transforms, queries are possible to entities such as domain, IPv4 address, URL, email, SSL certificates and many others
- Pivot and search across comprehensive number of internet data sets available - WHOIS records, IP resolutions, DNS data, SSL certificate data, or other open source intelligence
Typical users of this data
- Threat Intelligence Teams
- Security Analysts
Pricing & Access
Pricing Tier: Free Trial
Register here https://community.riskiq.com/
Transform Hub Type: Commercial Hub and Community Hub
Requirements: For full solution access, Maltego Classic /XL license and PassiveTotal API license
Access: For sales inquiry or to purchase an API key, kindly reach out to Maltego using the form below.
Reach out to us to learn more about this data integration and how to access it.
RiskIQ is provider of one of the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence. With more than 75 percent of attacks originating outside the firewall, RiskIQ allows enterprises to gain unified insight and control over web, social and mobile exposures. Trusted by thousands of security analysts, RiskIQ’s platform combines advanced internet data reconnaissance and analytics to expedite investigations, understand digital attack surfaces, assess risk and take action to protect the business, brand and customers.
For more information,visit: https://www.riskiq.com/products/passivetotal/.