Lib.rs

CryptographyMalwareDB
#virus-total #file #sample #analysis #antivirus #api #logic

bin+lib malwaredb-virustotal

Logic and datatypes for interacting with VirusTotal

by Richard Zak

5 releases

new 0.0.5 Apr 28, 2024
0.0.4 Mar 17, 2024
0.0.3 Dec 30, 2023
0.0.2 Dec 25, 2023
0.0.1 Dec 21, 2023

#414 in Cryptography

Download history 11/week @ 2024-01-06 71/week @ 2024-01-13 56/week @ 2024-01-20 62/week @ 2024-01-27 45/week @ 2024-02-03 59/week @ 2024-02-10 411/week @ 2024-02-17 218/week @ 2024-02-24 112/week @ 2024-03-02 149/week @ 2024-03-09 268/week @ 2024-03-16 181/week @ 2024-03-23 59/week @ 2024-03-30 123/week @ 2024-04-06 156/week @ 2024-04-13 242/week @ 2024-04-20

610 downloads per month
Used in 2 crates (via malwaredb-server)

Apache-2.0

48KB
895 lines

MalwareDB VirusTotal Client

TestLintOpenSSF Scorecard

This is logic for interacting with VirusTotal's V3 API. At present, only the following actions are supported:

  • Fetch file report: this gets the anti-virus scan data for a given sample, and there are examples in the testdata/ directory.
  • Request re-scan: ask VirusTotal to run a given sample through their collection of anti-virus applications and analysis tools.
  • Submit a sample: send a sample to VirusTotal for analysis.
  • Download a sample: download the original sample from VirusTotal (not fully tested, requires VirusTotal Premium).
  • The file report object and error types can be useful when interacting with VirusTotal using another crate or using VT's API directly; you don't have to use the client object in this crate to use the data (and error) types in this crate.

VirusTotal supports these actions given a MD5, SHA-1, or SHA-256 hash.

Additionally, this crate provides a client application for the supported operations above: submitting a file, retrieving a report, requesting re-analysis, and downloading a sample (requires Premium).

Dependencies

~9–24MB
~326K SLoC