VirusTotal MCP Server
Summary
A MCP server for querying the VirusTotal API. This server provides tools for scanning URLs, analyzing file hashes, and retrieving IP address reports.
Available Actions(8)
get_url_report
Get a comprehensive URL analysis report including security scan results and key relationships (communicating files, contacted domains/IPs, downloaded files, redirects, threat actors). Parameters: url (required): The URL to analyze.
get_file_report
Get a comprehensive file analysis report using its hash (MD5/SHA-1/SHA-256). Includes detection results, file properties, and key relationships (behaviors, dropped files, network connections, embedded content, threat actors). Parameters: hash (required): MD5, SHA-1 or SHA-256 hash of the file.
get_ip_report
Get a comprehensive IP address analysis report including geolocation, reputation data, and key relationships (communicating files, historical certificates/WHOIS, resolutions). Parameters: ip (required): IP address to analyze.
get_domain_report
Get a comprehensive domain analysis report including DNS records, WHOIS data, and key relationships (SSL certificates, subdomains, historical data). Parameters: domain (required): Domain name to analyze, relationships (optional): Array of specific relationships to include in the report.
get_url_relationship
Query a specific relationship type for a URL with pagination support. Choose from 17 relationship types including analyses, communicating files, contacted domains/IPs, downloaded files, graphs, referrers, redirects, and threat actors. Parameters: url (required): The URL to get relationships for, relationship (required): Type of relationship to query, limit (optional, default: 10): Maximum number of related objects to retrieve (1-40), cursor (optional): Continuation cursor for pagination.
get_file_relationship
Query a specific relationship type for a file with pagination support. Choose from 41 relationship types including behaviors, network connections, dropped files, embedded content, execution chains, and threat actors. Parameters: hash (required): MD5, SHA-1 or SHA-256 hash of the file, relationship (required): Type of relationship to query, limit (optional, default: 10): Maximum number of related objects to retrieve (1-40), cursor (optional): Continuation cursor for pagination.
get_ip_relationship
Query a specific relationship type for an IP address with pagination support. Choose from 12 relationship types including communicating files, historical SSL certificates, WHOIS records, resolutions, and threat actors. Parameters: ip (required): IP address to analyze, relationship (required): Type of relationship to query, limit (optional, default: 10): Maximum number of related objects to retrieve (1-40), cursor (optional): Continuation cursor for pagination.
get_domain_relationship
Query a specific relationship type for a domain with pagination support. Choose from 21 relationship types including SSL certificates, subdomains, historical data, and DNS records. Parameters: domain (required): Domain name to analyze, relationship (required): Type of relationship to query, limit (optional, default: 10): Maximum number of related objects to retrieve (1-40), cursor (optional): Continuation cursor for pagination.
コミュニティレビュー
まだレビューはありません. 最初のレビューを投稿しましょう!
会話に参加するにはサインインしてください
