$30 off During Our Annual Pro Sale. View Details »

Virus Total Hunting - Botconf 2018

Thomas Roccia
December 05, 2018
Technology
0
240

Virus Total Hunting - Botconf 2018

This talk is about a tool created with the VT API version 3 to get information about the latest hunting notification. It has been given in December 2018 during the lightening talks.

Thomas Roccia

December 05, 2018
Tweet

More Decks by Thomas Roccia

See All by Thomas Roccia
State-Sponsored Financially Motivated Attacks
fr0gger
0
530
Binary Instrumentation for Malware Analysis
fr0gger
2
1.3k
Conti Leaks: Practical walkthrough and what can we learn from it
fr0gger
0
790
Sharing is Caring: Sharing Threat Intelligence Notebook Edition
fr0gger
0
1.6k
Code Graphology
fr0gger
0
510
X-Ray of Malware Evasion Techniques: Analysis, Dissection, Cure?
fr0gger
3
750
AISA - Practical Threat Intelligence
fr0gger
0
1.2k
Hermetic Wiper Infographic
fr0gger
1
730
Technical Analysis of Cuba Ransomware
fr0gger
1
240

Other Decks in Technology

See All in Technology
開発生産性大幅アップ!Postman VS Code拡張機能
nagix
0
140
Java in containers and serverless
takesection
0
130
AWS re:Invent 2023の期間中に出たコンテナアップデート集
yoshiitaka
3
260
CI/CDプロセスの拡充からはじめる技術的負債の解消/Eliminate technical debt, starting with expanding CI/CD processes
onecareer_tech
0
590
pmconf 2023 プロダクトと事業を無限にスケールするための最強のロードマップの作り方 / The Greatest Roadmap for Unlimited Scaling your Business and Products
yamamuteki
15
8.9k
GoのProtocプラグインを活用した効率的な負荷試験戦略 / Efficient Load Testing Strategies Utilizing the Go Protoc Plugin
biwashi
0
110
開発組織の体制づくり、いつやるか問題
akiroom
0
1.9k
LLMを活用した爆速アウトプットのすゝめ / bakusoku-outputs-with-llm
yuya4
8
4.1k
DMMオンラインサロン エンジニア採用資料/ for-software-engineers
onlinesalon
0
3.6k
SIEMを用いて、セキュリティログ分析の可視化と分析を実現し、PDCAサイクルを回してみた
coconala_engineer
1
150
なぜ
リアーキテクティング専任チームを作ったのか
kei_s
PRO
2
1k
⾃律的な開発チームを⽀えるためのSLO運⽤
sansantech
PRO
5
880

Featured

See All Featured
jQuery: Nuts, Bolts and Bling
dougneiner
57
6.9k
Faster Mobile Websites
deanohume
296
29k
Bootstrapping a Software Product
garrettdimon
PRO
299
110k
The Power of CSS Pseudo Elements
geoffreycrofte
56
4.7k
How To Stay Up To Date on Web Technology
chriscoyier
780
250k
What’s in a name? Adding method to the madness
productmarketing
PRO
14
2.3k
Raft: Consensus for Rubyists
vanstee
130
6k
[Rails World 2023 - Day 1 Closing Keynote] - The Magic of Rails
eileencodes
1
890
Documentation Writing (for coders)
carmenintech
55
3.5k
Streamline your AJAX requests with AmplifyJS and jQuery
dougneiner
130
9.8k
The Brand Is Dead. Long Live the Brand.
mthomps
48
7.3k
ReactJS: Keep Simple. Everything can be a component!
pedronauck
656
120k

Transcript

  1. VTHunting
    A Tiny Tool for Malware Hunting Collaboration
    Thomas ROCCIA
    Security Researcher, Advanced Threat Research
    @fr0gger_

    View Slide

  2. 2
    Botconf - Thomas Roccia – 2018
    What is VThunting?
    • VTHunting is a tiny tool coded in Python
    • Used to collect Malware Hunting Report from VirusTotal
    • Centralize reports notification in one place
    Disclaimer: You need a VirusTotal Intelligence API

    View Slide

  3. 3
    Botconf - Thomas Roccia – 2018
    What it can do?
    Vthunting.py
    CLI Report Slack Report Telegram
    Report
    Email Report
    Request VTI

    View Slide

  4. 4
    Botconf - Thomas Roccia – 2018
    How to use it?
    • Configuring with cron to generate
    daily, weekly or monthly report

    View Slide

  5. 5
    Botconf - Thomas Roccia – 2018
    Report Examples

    View Slide

  6. 6
    Botconf - Thomas Roccia – 2018
    Where to find it?
    https://github.com/fr0gger/vthunting

    View Slide

  7. 7
    Botconf - Thomas Roccia – 2018
    Happy Hunting!
    Thomas ROCCIA
    Security Researcher, McAfee Advanced Threat Research
    @fr0gger_
    https://github.com/fr0gger/vthunting

    View Slide