Latest Version 2.2.8
September 8, 2025
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
VirusTotal
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v2 APIs
Built by
Compatibility
Not Available
Platform Version: 7.0, 6.4, 6.3, 6.2, 6.1, 6.0, 5.5, 5.4, 5.3, 5.2, 5.1, 5.0
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#3
in Reputation
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v2 APIs
Supported Actions
- test connectivity: Validate the asset configuration for connectivity
- file reputation: Queries VirusTotal for file reputation info
- url reputation: Queries VirusTotal for URL info
- domain reputation: Queries VirusTotal for domain info
- ip reputation: Queries VirusTotal for IP info
- get file: Downloads a file from VirusTotal, and adds it to the vault
- get report: Get the results using the scan id from a detonate file or detonate url action
- detonate file: Upload a file to Virus Total and retrieve the analysis results
- detonate url: Load a URL to Virus Total and retrieve analysis results
Categories
Created By
Splunk LLC
Source Code
Type
connector
Downloads
27,778
Licensing
Splunk Answers
Resources
Log in to report this app listing