Virus Total Hunting - Botconf 2018

December 05, 2018

310

Virus Total Hunting - Botconf 2018

This talk is about a tool created with the VT API version 3 to get information about the latest hunting notification. It has been given in December 2018 during the lightening talks.

Thomas Roccia

December 05, 2018

More Decks by Thomas Roccia

See All by Thomas Roccia

The XZ Backdoor Story

fr0gger

4.2k

Prompt Engineering for Threat Intelligence

fr0gger

270

State-Sponsored Financially Motivated Attacks

fr0gger

670

Binary Instrumentation for Malware Analysis

fr0gger

1.5k

Conti Leaks: Practical walkthrough and what can we learn from it

fr0gger

960

Sharing is Caring: Sharing Threat Intelligence Notebook Edition

fr0gger

1.9k

Code Graphology

fr0gger

720

X-Ray of Malware Evasion Techniques: Analysis, Dissection, Cure?

fr0gger

920

AISA - Practical Threat Intelligence

fr0gger

1.3k

Other Decks in Technology

See All in Technology

Windows Autopilot Deployment by OSD Guy

tamaiyutaro

390

なぜ今 AI Agent なのか _近藤憲児

kenjikondobai

1.2k

Amazon CloudWatch Network Monitor のススメ

yuki_ink

170

テストコード品質を高めるためにMutation Testingライブラリ・Strykerを実戦導入してみた話

ysknsid25

2.2k

Platform Engineering for Software Developers and Architects

syntasso

460

誰も全体を知らない～ロールの垣根を超えて引き上げる開発生産性 / Boosting Development Productivity Across Roles

kakehashi

150

rootlessコンテナのすゝめ - 研究室サーバーでもできる安全なコンテナ管理

kitsuya0828

250

Microsoft Intune アプリのトラブルシューティング

sophiakunii

440

2024年グライダー曲技世界選手権参加報告/2024 WGAC report

jscseminar

310

形式手法の 10 メートル手前 #kernelvm / Kernel VM Study Hokuriku Part 7

ytaka23

830

Going down the RAT hole: Deep dive into the Vuln-derland of APT-class RAT Tools

nttcom

390

ノーコードデータ分析ツールで体験する時系列データ分析超入門

negi111111

360

Featured

See All Featured

Cheating the UX When There Is Nothing More to Optimize - PixelPioneers

stephaniewalter

280

13k

Responsive Adventures: Dirty Tricks From The Dark Corners of Front-End

smashingmag

250

21k

Intergalactic Javascript Robots from Outer Space

tanoku

269

27k

Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure

mongodb

9.2k

RailsConf 2023

tenderlove

900

Docker and Python

trallard

3.1k

Into the Great Unknown - MozCon

thekraken

1.5k

Visualization

eitanlees

145

15k

What’s in a name? Adding method to the madness

productmarketing

PRO

3.1k

Building Applications with DynamoDB

mza

6.1k

Automating Front-end Workflow

addyosmani

1366

200k

For a Future-Friendly Web

brad_frost

175

9.4k

Transcript

VTHunting A Tiny Tool for Malware Hunting Collaboration Thomas ROCCIA
Security Researcher, Advanced Threat Research @fr0gger_
2 Botconf - Thomas Roccia – 2018 What is VThunting?
• VTHunting is a tiny tool coded in Python • Used to collect Malware Hunting Report from VirusTotal • Centralize reports notification in one place Disclaimer: You need a VirusTotal Intelligence API
3 Botconf - Thomas Roccia – 2018 What it can
do? Vthunting.py CLI Report Slack Report Telegram Report Email Report Request VTI
4 Botconf - Thomas Roccia – 2018 How to use
it? • Configuring with cron to generate daily, weekly or monthly report
5 Botconf - Thomas Roccia – 2018 Report Examples
6 Botconf - Thomas Roccia – 2018 Where to find
it? https://github.com/fr0gger/vthunting
7 Botconf - Thomas Roccia – 2018 Happy Hunting! Thomas
ROCCIA Security Researcher, McAfee Advanced Threat Research @fr0gger_ https://github.com/fr0gger/vthunting