Latest Version 2.1.2
September 17, 2021
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
VirusTotal
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v2 APIs
Built by Splunk Inc.
Compatibility
Not Available
Platform Version: 5.5, 5.4, 5.3, 5.2, 5.1, 5.0, 4.10, 4.9
Rating
0
(0)
Log in to rate this app
Support
Splunk Supported connector
Ranking
#2
in Reputation
This app integrates with the VirusTotal cloud to implement investigative and reputation actions using v2 APIs
Supported Actions
- test connectivity: Validate the asset configuration for connectivity
- file reputation: Queries VirusTotal for file reputation info
- url reputation: Queries VirusTotal for URL info
- domain reputation: Queries VirusTotal for domain info
- ip reputation: Queries VirusTotal for IP info
- get file: Downloads a file from VirusTotal, and adds it to the vault
- get report: Get the results using the scan id from a detonate file or detonate url action
- detonate file: Upload a file to Virus Total and retrieve the analysis results
- detonate url: Load a URL to Virus Total and retrieve analysis results
Categories
Created By
Splunk Inc.
Source Code
Type
connector
Licensing
Splunk Answers
Resources
Login to report this app listing