Some transforms use public APIs to get their results. These public APIs sometimes have strict rate limits to prevent abuse. Signing in to these services with your own account allows for the rate limits to be applied per user instead of having the same rate limits shared between everyone using these transforms. Some of the transform hub members also use Managed Services to control access to their transforms instead of using API keys.
By default, the Maltego client comes with a single managed service for using the Twitter transforms. To use any of the standard Twitter transform you will need to sign into a Twitter account.
Clicking the Managed Services button will open the Service Manager window:
Most OAuth 2.0 Providers require a Call back URL to be included as an URL parameter in one or all of the endpoint URLs. Please Refer to the applicable API or OAuth provider documentation for URL parameter requirements.
To ensure that the Maltego Desktop Client uses the correct Call back URL, please specify the protocol and TCP port in the Service Manager configuration for the applicable provider.
A. Please adjust the OAuth Service required Call back URL Protocol, e.g. http(default) or https.
B. Please adjust the OAuth Service required Call back URL TCP Port, e.g. 63141 or Random(default).
Only use Random for OAuth Providers that do not require the Call back URL to be included as an URL parameter in any of the endpoint URLs.
The steps below can be taken to sign into a new managed service. In this example, Twitter will be signed into:
- Click the "Sign In" text
- A page will open in your default browser
- Sign into your account, and then authorise Maltego
- After successfully signing in you will be shown the following image in your web browser and you can close the browser tab and go back to the Maltego client:
The managed service will now be shown as signed in:
Note: In Maltego, the managed services use a standard protocol named OAUTH where Maltego doesn’t ever receive or store your user account details. The Maltego client will receive a temporary access token from the service that is used to make requests on behalf of the user.