Awesome

Maltego Telegram

Maltego module for working with Telegram.

Features:

• Indexing of all stickers/emoji in Telegram channel
• Identification of the creator of a set of stickers/emoji

Find out more: What's wrong with stickers in Telegram? Deanonymize anonymous channels in two clicks

How does it work?

Each Telegram user has their own UID.

Any sticker pack has its creator's UID hidden in it, which can be seen by any user.

To do this, follow the algorithm:

1. Make an API request to get information about the sticker pack
2. Take the value of the "ID" key from the response
3. Perform a binary shift by 32 to the right.

The resulting UID can be exchanged for a familiar login using the @tgdb_bot bot, and thus reveal the user's profile.

The author of a channel who did not leave contacts can be de-anonymized. To do this, you need to scan his channel and find the sticker packs that he has ever created. And then use the algorithm above to get the real profile.

Installation

1. Clone the repository

git clone https://github.com/vognik/maltego-telegram

2. Install dependencies

pip install -r requirements.txt

3. Specify secrets in config.ini:

• api_id and api_hash: guide https://core.telegram.org/api/obtaining_api_id
• bot_token: guide https://core.telegram.org/bots/tutorial#obtain-your-bot-token

4. Log in to Telegram

python login.py

5. Generate Transforms Import File

python project.py

6. Import entities.mtz and telegram.mtz files using Import Config in Maltego
7. Check if they work: new Entities and Transforms should appear in Maltego