VirusTotal v3

This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v3 APIs

Supported Actions

• test connectivity: Validate the asset configuration for connectivity using supplied configuration
• domain reputation: Queries VirusTotal for domain info
• file reputation: Queries VirusTotal for file reputation info
• get file: Downloads a file from VirusTotal and adds it to the vault
• ip reputation: Queries VirusTotal for IP info
• url reputation: Queries VirusTotal for URL info (run this action after running detonate url)
• detonate url: Load a URL to Virus Total and retrieve analysis results
• detonate file: Upload a file to Virus Total and retrieve the analysis results
• get report: Get the results using the scan id from a detonate file or detonate url action
• get cached entries: Get listing of cached entries
• clear cache: Clear all cached entries
• get quotas: Retrieve user's API quota summary including daily, hourly, and monthly limits and usage details