VIRUSTOTAL RESPONSE INTEGRATION

Overview

 

VirusTotal inspects items with over 70 antivirus scanners and URL/domain blocklisting services, in addition to a myriad of tools to extract signals from the studied content. Any user can select a file from their computer using their browser and send it to VirusTotal. VirusTotal offers a number of file submission methods, including the primary public web interface, desktop uploaders, browser extensions and a programmatic API.

Prerequisites

  • Logsign 6.3.+ versions support this integration.

Configure On Virustotal

Forwarding settings are completed as follows:

 

  1. Log in to the Virustotal portal.
  2. Click the API key button.

 















  1. And then copy the value.

 

 

Configure On Logsign

 

Forwarding settings are completed as follows:

 

  1. Click Settings > Integrations > Responses.
  2. In the ‘Search’ part, write Virustotal.
  3. Click ‘Configure’ and then click ‘+Device’.

 



  1. Define the settings as follows:
  • Device Name: Define the Device Name.
  • Api Key: Specify the api key.
  1. Click Create to save the changes.

Methods

GET-IP-REPUTATION

  • Device:  Select the configuration you have configured.
  • Ip: Define the ip you want to query reputation.

 

GET-URL-REPUTATION

 

  • Device:  Select the configuration you have configured.
  • Url: Define the url you want to query reputation.












ANALYZE-URL

 

  • Device:  Select the configuration you have configured.
  • Url: Define the url you want to analyze. 
Was this article helpful?
0 out of 0 found this helpful

Articles in this section

See more
Become a Certified Logsign User/Administrator
Sign-up for Logsign Academy and take the courses to learn about Logsign USO Platform in detail. Enjoy the courses, and get your badges and certificates. In these courses, you'll learn how to use Logsign in your work and add value to your career.
Visit Our Blog
Our Logsign USO Platform illustrate our expertise. So do the blog. Through our blog posts, deepen your knowledge on various SecOps topics or get updated about important news & modern approaches for cybersecurity. Get into the habit of reading valuable information provided by Logsign. Be a step ahead.