Make RiskIQ API calls to generate new nodes.
Tested with Maltego v3.5.0 and v3.5.3, and canari 1.1.
# install malriq source
python setup.py install
# create mtz file
canari create-profile malriq
# It may ask to regenerate configs in ~/.canari . If so, make sure you put back
# your riskiq API token and private key inside ~/.canari/malriq.conf- Open ~/.canari/malriq.conf
- Input RiskIQ credentials: token and private key
- Open Maltego
- Click the Orb in the top left (the Maltego icon with three circles)
- Select the menu item Import->Import Configuration
- Select malriq.mtz (within the same directory as this README)
- Click Next
- Select both Transforms + Transform Sets
- Click Next, then Finish
- Right click any Domain, IP or URL
- Select Run Transform->RiskIQ-> Any available imported transform
- If no results are generated, no results found in API response
If there are issues and error messages pop up, check the debug console.
It may be that the credentials are not inside ~/.canari/malriq.conf or ~/.canari/canari.conf does not specify a link to malriq.conf:
[default]
configs = malriq.conf
Another problem may be due to a misconfiguration in maltego. It may be best to click Manage and Manage Transforms and delete every Malriq/RiskIQ transform, pip uninstall canari, riskiq and malriq, and start from scratch.
If all else fails and you do not have any personal configurations in maltego that you'd like to save, the easiest solution may be to completely uninstall maltego and wipe out its configuration directories (located in ~/Library/Application\ Support/maltego/{your maltego version}/etc on Mac), and then start the canari and malriq installation procedures again from scratch.