This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v2 APIs
Supported Actions
- test connectivity: Validate the asset configuration for connectivity
- file reputation: Queries VirusTotal for file reputation info
- url reputation: Queries VirusTotal for URL info
- domain reputation: Queries VirusTotal for domain info
- ip reputation: Queries VirusTotal for IP info
- get file: Downloads a file from VirusTotal, and adds it to the vault
- get report: Get the results using the scan id from a detonate file or detonate url action
- detonate file: Upload a file to Virus Total and retrieve the analysis results
- detonate url: Load a URL to Virus Total and retrieve analysis results