Warning
This app is archived. App archiving documentation
VirusTotal Malware Lookup for Splunk app icon

VirusTotal Malware Lookup for Splunk

This app is used to supplement your data with information from VirusTotal. The custom command ` | virustotal ` (bundled with this app) uses the `https://www.virustotal.com/vtapi/v2/file/report` endpoint to communicate with the VirusTotal API.

Built by Adarma Security
splunk product badge
Latest Version 2.4.0
June 6, 2022
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0
Rating

4

(8)

Log in to rate this app
Support
VirusTotal Malware Lookup for Splunk support icon
Not Supported
This app is used to supplement your data with information from VirusTotal. The custom command ` | virustotal ` (bundled with this app) uses the `https://www.virustotal.com/vtapi/v2/file/report` endpoint to communicate with the VirusTotal API. This TA can be installed on the search head. No additional manual steps are required in distributed environments, as the app only interacts with search-time functionality ( lookups and scheduled searches ). This Add-on has been tested (and installed) on Splunk Cloud. We're using GitLab to both share our source code and track issues (bugs or feature requests), please use it freely: https://gitlab.com/ecs_public_projects/splunk/TA-VirusTotal

Categories

Security, Fraud & Compliance

Created By

Adarma Security

Contributors

Harry McLaren, Tomasz Dziwok, Jonas Lassauw

Type

addon

Downloads

6,408

Featured in Collection

Getting Started with Security

Licensing

End User License Agreement for Third-Party Content(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing