Get Started
- Basics
- Getting Started
- Working in Maltego
- Investigate Tab
- View Tab
  - View Tab
- Entities Tab
- Collections Tab
  - Collections Tab
- Transforms Tab
- Machines Tab
- Collaboration Tab
- Import | Export Tab
- Windows Tab
Servers & Development
FAQs
Showcase
- Case studies
- User Examples
  - Use Cases
  - Fighting cyber bullies and pedophiles - with martial art and Maltego

CrowdStrike Intel

Modified on: Mon, 11 May, 2020 at 11:49 AM

Overview

CrowdStrike provides a suite of APIs to enable customers of the CrowdStrike Falcon platform to enhance their triage workflow and leverage their existing security investments.

The Falcon Intelligence API is one of the five API’s offered by CrowdStrike that enables customers to benefit from a rich feed of information spanning indicators, adversaries, news, and customized threat alerts.

CrowdStrike Intelligence API Transforms allows investigators can query the CrowdStrike Intelligence API to obtain attribution and additional data for indicators and see the correlation between adversaries, indicators, malware families and campaigns.

Benefits

Gain access to CrowdStrike Falcon Intelligence data to perform attribution on 70+ adversary groups that include nation-state, hacktivist, activist, and criminal threat actors

To read more click here.

About

Troubleshooting

Knowledge Base

Transform Hub Items

CrowdStrike Intel

Related Articles

Related Articles

Initial Transform Server Installation

Updating the Maltego Desktop Client

Select entities connected with specific links

Finding items in multiple graphs

Web Search Transforms: Know where were the entities found

Server Migration 2020: Mandatory update to all Maltego iTDS and CTAS on-premise servers
Server Migration 2020

2a) CTAS: Activation & Configuration

2b) iTDS: Activation & Configuration

Customising the Docker-Compose file

Migrating to a new iTDS Server

Using your own certs with our servers

Docker Networking and Transform Servers

Upgrading certificate if the certificate name is different

Setup: Python Transform Server using TRX + Apache2

Setup: Python Transform Server using TRX + Gunicorn

Writing Local Transforms in Python

API key setup for ITDS transforms

Setting API keys for all Transforms inside a hub-item

Porting old TRX transforms to the latest version

Add Maltego-TRX transforms to Maltego Desktop Client via iTDS

To Twitter Affiliation [Exact]

To Twitter Affiliation [Search Twitter]

To Tweets [From Circular Area]

To Netblocks in this AS [RobTex]

To Phrase [Change Entity Type]

To DNS Name (interesting) [Robtex]

To DNS Name [Find common DNS names]

To DNS Name [Using Name Schema dictionary]

To DNS Name [Attempt zone transfer]

To Files (Interesting) [using Search Engine]