Nadeem Douba, GWAPT, GPEN currently situated in the Ottawa (Ontario, Canada) valley, Nadeem provides technical security consulting services primarily to clients in the health, education, and public sectors. Nadeem has been involved within the security community for over ten years and has frequently presented talks in his local ISSA chapter, and most recently at DEF CON 20 on the topics of Open Source Intelligence and mobile security. He is also an active member of the open source software community and has contributed to projects such as libnet, Backtrack, and Maltego.
2. Situated in Ottawa, ON, Canada
Work at Cygnos Information Security as Pen-
Tester
◦ Subsidiary of Raymond Chabot Grant Thornton
Open Source Intelligence (OSInt)/Data Science
Fanatic!
Open Source Software Fanatic:
https://github.com/allfro
Credentials?
◦ Yes I sold my soul to the devil…
2Monday, July 29, 2013@ndouba | ndouba@gmail.com
3. A Brief Intro to Maltego
What is Sploitego?
Why Sploitego?
Cool Demos
Installing Sploitego on Backtrack
Creating Your Own Transforms
Wrap Up
Questions
Monday, July 29, 2013 3@ndouba | ndouba@gmail.com
4. For those who are not familiar…
Monday, July 29, 2013 4@ndouba | ndouba@gmail.com
7. Pen-test transforms for Maltego!
◦ Transforms for all stages
Built with Python and Canari Framework
◦ Rapid Development Local Transform Framework
Monday, July 29, 2013 7@ndouba | ndouba@gmail.com
8. Hasn’t this been done before?
Monday, July 29, 2013 8@ndouba | ndouba@gmail.com
9. Open Source Intelligence (OSInt) gathering is
a big part of our assessments.
Information we collect about our targets can
break them.
Most OSINT tools work with Public
information repositories.
What if you are working with something
Private?
Monday, July 29, 2013@ndouba | ndouba@gmail.com 9
12. Pros Cons
Full Client-side Control
Maintain Privacy
Great Data Visibility
✗ Processing Overhead
✗ Development
✗ IP Disclosure
Monday, July 29, 2013 12@ndouba | ndouba@gmail.com
13. That can’t already be done with a remote transform?
Monday, July 29, 2013@ndouba | ndouba@gmail.com 13
18. With the Canari Framework!
Monday, July 29, 2013 18@ndouba | ndouba@gmail.com
19. Malformity by Keith Gilbert and team:
◦ https://github.com/digital4rensics/Malformity
NWMaltego, PaMalt, and CuckooForCanari by J.
David Bressler and Rich Popson:
◦ https://github.com/bostonlink/nwmaltego_canari
◦ https://github.com/bostonlink/pamalt_canari
◦ https://github.com/bostonlink/cuckooforcanari
CookieGrabber by Adam Maxwell:
◦ https://github.com/catalyst256/canariCookieGrabber
Monday, July 29, 2013@ndouba | ndouba@gmail.com 19