- My View
I have been using the Virustotal plugin in Jakarta to get scan results back for observables in our alerts. The private, paid API has expanded data options.
Has anyone implemented the private API in SecOps?
Does the increased amount of types of data offered in the paid API automatically get captured by the Scan Lookup Results?
Thanks for any feedback!
If i were you, i would start frm here:
Let me know if this helps,
I was finally able to take a look at the link which you sent. For using Tanium, there are Virustotal configuration options. But since I do not plan on using Tanium, and since there are no such configuration options built into the SN Virustotal plugin, am I to assume that the only limit on API calls from ServiceNow to Virustotal would depend on whether I have a public or private API with them?