aeondave/maltego
offensive-tools/osint/maltego/SKILL.md
Visual intelligence and link analysis platform for mapping relationships between people, organizations, domains, IPs, and infrastructure. Use when building entity relationship graphs during recon or threat intelligence gathering.
$ install --global
skillsauthnpx skillsauth add aeondave/malskill maltegoInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 31, 2026, 9:18 PM55.9s1 file scanned
SKILL.md
- name:
- maltego
- description:
- Visual intelligence and link analysis platform for mapping relationships between people, organizations, domains, IPs, and infrastructure. Use when building entity relationship graphs during recon or threat intelligence gathering.
- license:
- MIT
- compatibility:
- Java; Linux/macOS/Windows; GUI; maltego.com; Community Edition free
- author:
- AeonDave
- version:
- 1.0
Maltego
Visual OSINT and link analysis — entity graph mapping for people, domains, IPs, orgs.
Quick Start
- Download from maltego.com → register for Community Edition (free)
- Launch Maltego → New Graph
- Drag entity from palette (e.g., Domain)
- Type target domain → Run All Transforms
Key Entity Types
| Entity | Transforms | |--------|-----------| | Domain | DNS, WHOIS, subdomains, MX, NS | | IP Address | Geo, reverse DNS, netblock, Shodan | | Person | Social accounts, email, phone | | Organization | People, domains, certificates | | Email | Breaches, social accounts (Holehe) | | Website | Tech fingerprint, links |
Common Transforms
| Transform | Purpose |
|-----------|---------|
| To DNS Name | Subdomain enum |
| To IP Address | Resolve domain |
| To Website | Enumerate web presence |
| To Email Address | Find emails |
| To Social Accounts | Map social media |
| Shodan Search | Enumerate open ports |
Common Workflows
Domain recon:
- Add Domain entity → target.com
- Run:
DNS Name – To DNS Name [MX/NS/A] - Run:
Domain – To Website - Run:
IP – To Shodan
Person OSINT:
- Add Person entity → Full Name
- Run:
Person – To Email - Run:
Email – To Social Accounts
Resources
| File | When to load |
|------|--------------|
| references/ | Custom transform and API integration notes |
Related Skills
aeondave/vibe-audit-technique
development
VerifiedTrustedCommunity
White-box auditing methodology for AI-generated ('vibe-coded') applications. Focuses on modern stack misconfigurations (Supabase, Next.js, Vercel).
4SKILL.mdUpdated Jun 12, 2026
aeondave/source-review-technique
development
VerifiedTrustedCommunity
Hybrid AI/Deterministic SAST methodology for discovering zero-day vulnerabilities in source code. Orchestrates structural search with AI-driven data flow and sink validation.
4SKILL.mdUpdated Jun 12, 2026
aeondave/hardware-technique
development
VerifiedTrustedCommunity
Auth assessment: hardware/embedded methodology; UART/JTAG/SWD/SPI/I2C, firmware extraction, boot/debug paths, embedded OS evidence.
4SKILL.mdUpdated Jun 12, 2026
aeondave/container-technique
devops
VerifiedTrustedCommunity
Container methodology: Identifying containerization limits, Docker/K8s misconfigurations, and executing escapes to the host node.
4SKILL.mdUpdated Jun 12, 2026