Extending the basic functionality of Maltego based on the Canari framework and Shodan search engine

Authors

Keywords:

Shodan, Maltego, Canari framework, data collection and analysis, software vulnerability, information security

Abstract

The paper considers Maltego metasearch system, which is widely used for collecting data from open sources and automatically building relationships between various objects. The main characteristics and the algorithm of the Shodan search engine was studied, and also the fundamental difference between this system and traditional search engines was explained. The Shodan platform indexes information that is collected from response banners of devices which are connected to the internet, while Google, Yandex and similar services index only the content of websites. Based on the studied materials, an extension of the Maltego functionality was developed using the Canari framework and the Python programming language. This approach allows to combine the main advantages of the considered systems: a rich set of graphical tools of Maltego and a large open database of the Shodan system. The proposed option also allows to configure the system to fit any unique requirements that information security specialists need to conduct a security audit of information systems.

Author Biographies

  • Shohrukh R. Davlatov, Belarusian State University of Informatics and Radioelectronics, 6 P. Broŭki Street, Minsk 220013, Belarus

    postgraduate student at the department of information security, faculty of infocommunications

  • Petr V. Kuchynski, Belarusian State University of Informatics and Radioelectronics, 6 P. Broŭki Street, Minsk 220013, Belarus; A. N. Sevchenko Institute of Applied Physical Problems, Belarusian State University, 7 Kurčatava Street, Minsk 220045, Belarus

    doctor of science (physics and mathematics); professor at the department of information security, faculty of infocommunications, Belarusian State University of Informatics and Radioelectronics, and director of A. N. Sevchenko Institute of Applied Physical Problems, Belarusian State University

References

  1. Davlatov Sh. [Comparative analysis of tools for collecting and analyzing data from open sources OSINT]. In: Tekhnicheskie sredstva zashchity informatsii. XVII Belorussko-Rossiiskaya nauchno-tekhnicheskaya konferentsiya; 11 iyunya 2019 g.; Minsk, Belarus [Technical means of information security. XVII Belarusian and Russian scientific and technical conference; 2019 June 11; Minsk, Belarus]. Minsk: Belarusian State University of Informatics and Radioelectronics; 2019. p. 23–24. Russian.
  2. Skabtsov NV. Audit bezopasnosti informatsionnykh system [Information systems security audit]. Saint Petersburg: Piter; 2018. 272 p. Russian.
  3. Maltego OSINT Blog [Internet; cited 2019 May 17]. Available from: https://maltego.blogspot.com.
  4. Canari Framework [official documentation] [Internet; cited 2019 April 5]. Available from: http://www.canariproject.com/en/latest/.
  5. VanderPlas J. Python Data Science Handbook: Essential Tools for Working with Data. Schanafelt D, editor. Sebastopol: О’Reilly Media; 2017. 548 p. (О’Reilly). Russian edition: VanderPlas J. Python dlya slozhnykh zadach. Nauka o dannykh i mashinnoe obuchenie. Pal’ti I, translator; Grinchik N, editor. Saint Petersburg: Piter; 2019. 576 p. (Bestsellery O’Relli).
  6. Gilberto N-G, Juned A. Web Penetration Testing with Kali Linux. Third Edition: Explore the methods and tools of ethical hacking with Kali Linux. Birmingham: Packt Publishing – ebooks Account; 2018. 426 p.

Downloads

Published

2020-01-27

Issue

Section

Information Processing Technologies

How to Cite

(1)
Davlatov, S. R. .; Kuchynski, P. V. . Extending the Basic Functionality of Maltego Based on the Canari Framework and Shodan Search Engine. Журнал Белорусского государственного университета. Физика 2020, No. 1, 34-40. https://doi.org/10.33581/2520-2243-2020-1-34-40.