Get Domain Report
Get a domain report.
External Documentation
To learn more, visit the VirusTotal documentation.
Parameters
Parameter | Description |
---|---|
Domain name | The domain that the report will be generated for. The domain must not include http:// or https:// . For example - www.example.com or simply example.com. |
Example Output
{
"data": {
"attributes": {
"last_dns_records": [
{
"type": "NS",
"value": "a.iana-servers.net",
"ttl": 11315
},
{
"type": "TXT",
"value": "v=spf1 -all",
"ttl": 21600
},
{
"type": "NS",
"value": "b.iana-servers.net",
"ttl": 11315
},
{
"type": "A",
"value": "93.184.216.34",
"ttl": 20758
},
{
"rname": "noc.dns.icann.org",
"retry": 3600,
"value": "ns.icann.org",
"minimum": 3600,
"refresh": 7200,
"expire": 1209600,
"ttl": 3600,
"serial": 2022091151,
"type": "SOA"
},
{
"priority": 0,
"type": "MX",
"value": "",
"ttl": 20907
},
{
"type": "TXT",
"value": "wgyf8z8cgvm2qmxpnbnldrcltvk4xqfn",
"ttl": 21600
},
{
"type": "AAAA",
"value": "2606:2800:220:1:248:1893:25c8:1946",
"ttl": 20857
}
],
"jarm": "29d29d15d29d29d21c42d42d0000003014e6e1a0bc19438ed392b132659e77",
"whois": "Creation Date: 1995-08-14T04:00:00Z\nDNSSEC: signedDelegation\nDomain Name: EXAMPLE.COM\nDomain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited\nDomain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited\nDomain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited\nName Server: A.IANA-SERVERS.NET\nName Server: B.IANA-SERVERS.NET\nRegistrar IANA ID: 376\nRegistrar URL: http://res-dom.iana.org\nRegistrar WHOIS Server: whois.iana.org\nRegistrar: RESERVED-Internet Assigned Numbers Authority\nRegistry Domain ID: 2336799_DOMAIN_COM-VRSN\nRegistry Expiry Date: 2023-08-13T04:00:00Z\nUpdated Date: 2022-08-14T07:01:31Z\ncreated: 1992-01-01\ndomain: EXAMPLE.COM\norganisation: Internet Assigned Numbers Authority\nsource: IANA",
"last_https_certificate_date": 1668669476,
"tags": [],
"popularity_ranks": {
"Majestic": {
"timestamp": 1668617881,
"rank": 348
},
"Statvoo": {
"timestamp": 1668617883,
"rank": 14544
},
"Alexa": {
"timestamp": 1668617881,
"rank": 14544
},
"Cisco Umbrella": {
"timestamp": 1668617882,
"rank": 13100
}
},
"last_analysis_date": 1668669175,
"last_dns_records_date": 1668669476,
"last_analysis_stats": {
"harmless": 83,
"malicious": 0,
"suspicious": 0,
"undetected": 13,
"timeout": 0
},
"creation_date": 808372800,
"whois_date": 1667311743,
"reputation": -11,
"registrar": "RESERVED-Internet Assigned Numbers Authority",
"last_analysis_results": {
"Bkav": {
"category": "undetected",
"result": "unrated",
"method": "blacklist",
"engine_name": "Bkav"
},
"CMC Threat Intelligence": {
"category": "harmless",
"result": "clean",
"method": "blacklist",
"engine_name": "CMC Threat Intelligence"
}
},
"last_update_date": 1660460491,
"last_modification_date": 1668680440,
"last_https_certificate": {
"size": 1867,
"public_key": {
"rsa": {
"key_size": 2048,
"modulus": "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",
"exponent": "010001"
},
"algorithm": "RSA"
},
"thumbprint_sha256": "7f2fe8d6b18e9a47839256cd97938daa70e8515750298ddba2f3f4b8440113fc",
"tags": [],
"cert_signature": {
"signature": "aa9fbe5d911bade44e4ecc8f07644435b4ad3b133fc129d8b4abf3425149463bd6cf1e4183e10b572f83697965076f59038c51948918103e1e5cedba3d8e4f1a1492d32bffd498cba7930ebcb71b93a4424246d9e5b11a6b682a9b2e48a92f1d2ab0e3f820945481502eeed7e0207a7b2e67fbfad817a45bdcca0062ef23af7a58f07a740cbd4d43f18c0287dce3ae09d2f7fa373cd24bab04e543a5d255110e41875f38a8e57a5e4c46b8b6fa3fc34bcd4035ffe0a471740ac1208be3544784d518bd519b405ddd423012d13aa5639aaf9008d61bd1710b067190ebaeadafba5fc7db6b1e78a2b4d10623a763f3b543fa568c50177b1c1b4e106b220e845294",
"signature_algorithm": "sha256RSA"
},
"validity": {
"not_after": "2023-03-14 23:59:59",
"not_before": "2022-03-14 00:00:00"
},
"version": "V3",
"extensions": {
"certificate_policies": [
"2.23.140.1.2.2"
],
"extended_key_usage": [
"serverAuth",
"clientAuth"
],
"authority_key_identifier": {
"keyid": "b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4"
},
"subject_alternative_name": [
"www.example.org",
"example.net",
"example.edu",
"example.com",
"example.org",
"www.example.com",
"www.example.edu",
"www.example.net"
],
"tags": [],
"subject_key_identifier": "f72a09d0245b1171eebabef43e1c3d56128816bb",
"crl_distribution_points": [
"http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl",
"http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl"
],
"key_usage": [
"ff"
],
"1.3.6.1.4.1.11129.2.4.2": "048201680166007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116bec",
"CA": true,
"ca_information_access": {
"CA Issuers": "http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt",
"OCSP": "http://ocsp.digicert.com"
}
},
"signature_algorithm": "sha256RSA",
"serial_number": "0faa63109307bc3d414892640ccd4d9a",
"thumbprint": "df81dfa6b61eafdffffe1a250240db5d2e6cee25",
"issuer": {
"C": "US",
"CN": "DigiCert TLS RSA SHA256 2020 CA1",
"O": "DigiCert Inc"
},
"subject": {
"C": "US",
"ST": "California",
"CN": "www.example.org",
"O": "Internet Corporation for Assigned Names and Numbers",
"L": "Los Angeles"
}
},
"categories": {
"Forcepoint ThreatSeeker": "information technology",
"Sophos": "information technology",
"BitDefender": "computersandsoftware",
"Comodo Valkyrie Verdict": "mobile communications",
"alphaMountain.ai": "Information Technology"
},
"total_votes": {
"harmless": 17,
"malicious": 5
}
},
"type": "domain",
"id": "example.com",
"links": {
"self": "https://www.virustotal.com/api/v3/domains/example.com"
}
}
}
Workflow Library Example
Get Domain Report with Virustotal and Send Results Via Email
Preview this Workflow on desktop