One of the most important phases in a red team engagement is the information gathering prior to the attack. In this course, we explore the Maltego CE tool, which will help you to collect technical and people information from your target.
Performing an extensive information gathering about your target is crucial in a red team engagement. You should have as most information as possible about the technology and people in your target organization. In this course, Technical Information Gathering with Maltego CE, you will explore one of the most well-known information gathering tools amongst red team professionals, the Maltego framework. First, you will learn the basics about the tool and how Maltego uses its Transforms to collect data about our targets. Next, you will explore how to collect technical information such as DNS subdomains, IP addresses, and even the location of your target servers. Finally, you will see how to collect information about the people that work in the company, including collecting email addresses from employees as well as researching if accounts from the company were leaked in previous data breaches. When you are finished with this course, you will have the skills and knowledge of the Maltego CE needed to gather technical and people information from your target organization, covering three important tactics from the MITRE PRE-ATT&CK framework: Determine domain and IP address space (T1250), Conduct passive scanning (T1253), and Identify People of Interest (T1269).
Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 10+ years of IT experience, 6 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.
Course Overview (Tool Introduction) Hey there. Welcome to Pluralsight. In this cybersecurity tools course, you'll learn how to collect technical and people information from a target using the Maltego CE Framework. One of the most important steps in a red team engagement is to gather as much information as possible from our targets so then we can create an effective exploitation plan. The Maltego CE is a complete framework for information gathering and incident investigations, it's a really well known tool between red teamers and incident responders since it automates a lot of information gathering and collection. In this course, you'll learn how to use the Maltego CE to gather both technical and people information about our target. In here, we start by learning how to gather crucial technical information about the domain such as IP addresses, vulnerable subdomains, and even the physical location of the servers. This information is essential for identifying the points of entry in the organization, and after that, we discuss how to gather information about the people that work in a company such as identifying the email address of employees and even identifying if accounts from the company were previously compromised in their bridges. Whether we're trying to gather information from a writing engagement or just looking to audit the security of your own company, join me in learning how to gather technical and people information using the Maltego CE tool here, at Pluralsight.