Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
VirusTotal v3
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v3 APIs
Built by Splunk LLC
Compatibility
Not Available
Platform Version: 6.4, 6.3, 6.2
Rating
0
(0)
Log in to rate this app
Ranking
#1
in Reputation
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v3 APIs
Supported Actions
- test connectivity: Validate the asset configuration for connectivity using supplied configuration
- domain reputation: Queries VirusTotal for domain info
- file reputation: Queries VirusTotal for file reputation info
- get file: Downloads a file from VirusTotal and adds it to the vault
- ip reputation: Queries VirusTotal for IP info
- url reputation: Queries VirusTotal for URL info (run this action after running detonate url)
- detonate url: Load a URL to Virus Total and retrieve analysis results
- detonate file: Upload a file to Virus Total and retrieve the analysis results
- get report: Get the results using the scan id from a detonate file or detonate url action
- get cached entries: Get listing of cached entries
- clear cache: Clear all cached entries
- get quotas: Retrieve user's API quota summary including daily, hourly, and monthly limits and usage details
Categories
Created By
Splunk LLC
Source Code
Type
connector
Downloads
30,260
Licensing
Splunk Answers
Resources
Login to report this app listing