Posh-VirusTotal PowerShell Module
Posh-VirusTotal PowerShell V3.0 or higher module for interacting with the VirtusTotal service to analize suspicious files and URLs using either the Public or Private Version 2 API provided by VirusTotal. Cmdlets Available: Cmdlet Synopsis Get-PoshVTVersion Checks the version of the module installed versus the version on GitHub Get-VTAPIKeyInfo Get information on the Virus Total API key. Get-VTDomainReport Get a VirusTotal Report for a given Domain Get-VTFileBehaviourReport Get a report about the behavior of the file when executed in a sandboxed environment. Get-VTFileComment Retrieve a list of VirusTotal Community comments for a given file or URL Get-VTFileNetworkTraffic Get a dump of the network traffic generated by the file when executed. Get-VTFileReport Get a VirusTotal Report for a given File Get-VTFileSample Download a file by its hash. Get-VTFileScanReport Get the scan results for a file. Get-VTIPReport Get a VirusTotal Report for a given IPv4 Address Get-VTSpecialURL Get a special URL to upload files bigger than 32MB in size. Get-VTURLReport Get a VirusTotal Report for a given URL Remove-VTFileRescan Delete a previously scheduled scan. Search-VTAdvancedReversed Search for suspicious files and URLs.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Falcon Sandbox is a malware analysis framework that provides in-depth static and dynamic analysis of files, offering hybrid analysis, behavior indicators, and integrations with various security tools.
Blazingly fast Yara queries for malware analysts with an analyst-friendly web GUI.
PinCTF is a tool for using Intel's Pin Tool to instrument reverse engineering binaries and count instructions.
A tool designed to handle archive file data and augment Yara's capabilities.
A program to manage yara ruleset in a database with support for different databases and configuration options.
Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.
A tool that extracts and deobfuscates strings from malware binaries using advanced static analysis techniques.
An open source machine code decompiler that converts binary executables into readable C source code across multiple architectures and file formats.
PINNED
Proton Pass is a cross-platform password manager that provides encrypted storage, password generation, and security monitoring features with integrated 2FA and dark web monitoring capabilities.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.