$30 off During Our Annual Pro Sale. View Details »

Virus Total Hunting - Botconf 2018

Thomas Roccia
December 05, 2018

Virus Total Hunting - Botconf 2018

This talk is about a tool created with the VT API version 3 to get information about the latest hunting notification. It has been given in December 2018 during the lightening talks.

Thomas Roccia

December 05, 2018
Tweet

More Decks by Thomas Roccia

Other Decks in Technology

Transcript

  1. VTHunting
    A Tiny Tool for Malware Hunting Collaboration
    Thomas ROCCIA
    Security Researcher, Advanced Threat Research
    @fr0gger_

    View Slide

  2. 2
    Botconf - Thomas Roccia – 2018
    What is VThunting?
    • VTHunting is a tiny tool coded in Python
    • Used to collect Malware Hunting Report from VirusTotal
    • Centralize reports notification in one place
    Disclaimer: You need a VirusTotal Intelligence API

    View Slide

  3. 3
    Botconf - Thomas Roccia – 2018
    What it can do?
    Vthunting.py
    CLI Report Slack Report Telegram
    Report
    Email Report
    Request VTI

    View Slide

  4. 4
    Botconf - Thomas Roccia – 2018
    How to use it?
    • Configuring with cron to generate
    daily, weekly or monthly report

    View Slide

  5. 5
    Botconf - Thomas Roccia – 2018
    Report Examples

    View Slide

  6. 6
    Botconf - Thomas Roccia – 2018
    Where to find it?
    https://github.com/fr0gger/vthunting

    View Slide

  7. 7
    Botconf - Thomas Roccia – 2018
    Happy Hunting!
    Thomas ROCCIA
    Security Researcher, McAfee Advanced Threat Research
    @fr0gger_
    https://github.com/fr0gger/vthunting

    View Slide