VirusTotal Public API
By Maltego Technologies
Leverage 15 years of malicious sightings to enrich your organization’s malware observations and logs.
VirusTotal Public API Transforms for Maltego
VirusTotal is a service that analyzes files and URLs for viruses, worms, trojans, and other kinds of malicious content.
It provides as a free service a public API that allows for automation of some of its online features such as upload and scan files, submit and scan URLs, access finished scan reports, and make automatic comments on URLs and samples.
With the VirusTotal Transforms for Maltego, investigators can query the VirusTotal Public API for information about IP Addresses, Hashes, Domains, and URLs directly within Maltego. There is also a paid version of VirusTotal that allows customers to examine any file uploaded to the service.
Kindly note that some restrictions apply for requests made through the public API, such as requiring an individual API key freely obtained by signing up online, low priority scan queue, and limited number of requests.
Typical Users of VirusTotal Public API Data
- Threat Intelligence Teams
- Incident Response Teams
- Cyber and Digital Forensics Teams
- Security Analysts
- SOCs and CERTs
- Red Teams and Penetration Testers
- Trust and Safety Teams