Latest Version 3.0.0
February 26, 2026
VirusTotal v3
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v3 APIs
Built by
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#1
in Reputation
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v3 APIs
Supported Actions
- test connectivity: test connectivity
- domain reputation: Queries VirusTotal for domain info
- make request: make request
- file reputation: Queries VirusTotal for file reputation info
- get file: Downloads a file from VirusTotal and adds it to the vault
- ip reputation: Queries VirusTotal for IP info
- url reputation: Queries VirusTotal for URL info (run this action after running detonate url)
- detonate url: Load a URL to Virus Total and retrieve analysis results
- detonate file: Upload a file to Virus Total and retrieve the analysis results
- get report: Get the results using the scan id from a detonate file or detonate url action
- get cached entries: Get listing of cached entries
- clear cache: Clear all cached entries
- get quotas: Retrieve user's API quota summary including daily, hourly, and monthly limits and usage details
Categories
Reputation
Created By
Splunk LLC
Source Code
GitHub(Opens new window)Type
connector
Downloads
35,947
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing