VirusTotal API 2.0 UDF

SUBMITTED BY: Guest

DATE: May 28, 2013, 9:54 a.m.

FORMAT: Text only

SIZE: 6.6 kB

Raw Download

HITS: 1940

Report
  1. #include-once
  2. #include "WinHttp.au3"
  4. ; #INDEX# =================================================================================================
  5. ; Title .........: VT.au3
  6. ; AutoIt Version : 3.3.8.1
  7. ; Language ......: English
  8. ; Description ...: VirusTotal public API version 2.0 implementation in Autoit
  9. ;thanks to: trancexx|ProgAndy "WinHttp.au3" & www.virustotal.com
  10. ;Reference https://www.virustotal.com/es/documentation/public-api
  11. ;Written by Danyfirex
  12. ;Date 12/05/2013
  13. ; #FUNCTION# =============================================================================================
  16. ;===================CONSTANTS/CONSTANTES=======================
  17. Global Const $VTPage="www.virustotal.com"
  18. ;==============================================================
  21. ; #FUNCTIONS/FUNCIONES# =======================================
  22. ;VT_Open
  23. ;VT_Close
  24. ;VT_File_Report
  25. ;VT_Url_Report
  26. ;VT_Url_Scan
  27. ;VT_File_Scan
  28. ;VT_File_Rescan
  29. ;VT_Put_Comment
  30. ; ==============================================================
  34. ; #FUNCTION# =============================================================================================
  35. ; Name...........: VT_Open
  36. ; Description ...: Initialize and get session handle & connection handle
  37. ; Syntax.........: VT_Open()
  38. ; #FUNCTION# =============================================================================================
  39. Func VT_Open()
  40. Global $hOpen = _WinHttpOpen()
  41. Global $hConnect = _WinHttpConnect($hOpen, $VTPage)
  42. EndFunc ;==> VT_Open
  45. ; #FUNCTION# =============================================================================================
  46. ; Name...........: VT_Open
  47. ; Description ...: Close handles
  48. ; Syntax.........: VT_Open()
  49. ; #FUNCTION# =============================================================================================
  50. Func VT_Close()
  51. _WinHttpCloseHandle($hConnect)
  52. _WinHttpCloseHandle($hOpen)
  53. EndFunc
  56. ; #FUNCTION# =============================================================================================
  57. ; Name...........: VT_File_Report
  58. ; Description ...: retrieve a scan report on a given file
  59. ; Syntax.........: VT_File_Report($Resource,$APIkey)
  60. ; Parameters ....: $Resource - A md5/sha1/sha256/scan_id hash will retrieve the most recent report.
  61. ; $APIkey - your API key.
  62. ; #FUNCTION# =============================================================================================
  63. Func VT_File_Report($Resource,$APIkey)
  64. Return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/file/report", Default,"resource="& $Resource & "&key=" & $APIkey)
  65. EndFunc
  68. ; #FUNCTION# =============================================================================================
  69. ; Name...........: VT_Url_Report
  70. ; Description ...: retrieve a scan report on a given URL
  71. ; Syntax.........: VT_Url_Report($URL,$APIkey)
  72. ; Parameters ....: $URL - a URL.
  73. ; $APIkey - your API key.
  74. ; #FUNCTION# =============================================================================================
  75. Func VT_Url_Report($URL,$APIkey)
  76. Return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/url/report", Default, "resource=" & $URL & "&key=" & $APIkey)
  77. EndFunc
  79. ; #FUNCTION# =============================================================================================
  80. ; Name...........: VT_Url_Scan
  81. ; Description ...: submit a URL for Scanning
  82. ; Syntax.........: VT_Url_Scan($URL,$APIkey)
  83. ; Parameters ....: $URL - The URL that should be scanned.
  84. ; $APIkey - your API key.
  85. ; #FUNCTION# =============================================================================================
  86. Func VT_Url_Scan($URL,$APIkey)
  87. Return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/url/scan", Default, "url="& $URL & "&key="&$APIkey)
  88. EndFunc
  91. ; #FUNCTION# =============================================================================================
  92. ; Name...........: VT_Url_Scan
  93. ; Description ...: submit a file for Scanning
  94. ; Syntax.........: VT_File_Scan($File,$APIkey,$sBoundary="--------Boundary")
  95. ; Parameters ....: $File - The file path to upload
  96. ; $APIkey - your API key.
  97. ; $sBoundary - your Boundary.
  98. ; #FUNCTION# =============================================================================================
  99. Func VT_File_Scan($File,$APIkey,$sBoundary="--------Boundary")
  100. $sHeaders = "Content-Type: multipart/form-data; boundary=" & $sBoundary & @CRLF
  101. $sData = ''
  102. $sData &= "--" & $sBoundary & @CRLF
  103. $sData &= 'Content-Disposition: form-data; name="apikey"' & @CRLF & @CRLF & $APIkey & @CRLF
  104. $sData &= "--" & $sBoundary & @CRLF
  105. $sData &= __WinHttpFileContent("", "file", $File,$sBoundary)
  106. $sData &= "--" & $sBoundary & "--" & @CRLF
  107. return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/file/scan", Default, StringToBinary($sData,0), $sHeaders)
  108. EndFunc
  111. ; #FUNCTION# =============================================================================================
  112. ; Name...........: VT_File_Rescan
  113. ; Description ...: Rescan files in VirusTotal's file store
  114. ; Syntax.........: VT_File_Rescan($Resource,$APIkey)
  115. ; Parameters ....: $Resource - md5/sha1/sha256/CSV
  116. ; $APIkey - your API key.
  117. ; #FUNCTION# =============================================================================================
  118. Func VT_File_Rescan($Resource,$APIkey)
  119. return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/file/rescan", Default, "resource=" & $Resource &"&key=" & $APIkey)
  120. EndFunc
  123. ; #FUNCTION# =============================================================================================
  124. ; Name...........: VT_Put_Comment
  125. ; Description ...: Make a commnet on files and URLs
  126. ; Syntax.........: VT_Put_Comment($Resource,$APIkey)
  127. ; Parameters ....: $Resource - md5/sha1/sha256
  128. ; $APIkey - your API key.
  129. ; $Commnet - your Comment.
  130. ; #FUNCTION# =============================================================================================
  131. func VT_Put_Comment($Resource,$APIkey,$Comment)
  132. return _WinHttpSimpleRequest($hConnect, "POST", "/vtapi/v2/comments/put", Default, "resource=" & $Resource & _
  133. "&comment=" & $Comment & "&key=" & $APIkey)
  134. EndFunc
comments powered by Disqus