Integrations
- Integrations
- 1Password
- Abnormal
- Absolute
- AbuseIPDB
- Adaptive Shield
- Adobe Cloud
- ADP
- Agari Phishing Response
- Airlock
- Airlock Digital
- Akamai Identity Cloud Social
- Alert Logic
- AlgoSec Firewall Analyzer
- AlienVault OTX
- AlienVault USM
- Anodot
- Ansible
- Anvilogic
- Any Run
- Apex One
- ArcSight ESM
- Area 1
- Asana
- Asset Panda
- Atlassian User Management
- Atlassian User Provisioning
- auth0
- Authentik
- Authomize
- Automox
- AWS
- AWS IAM Identity Center
- Axonius
- Azure
- Azure Data Explorer
- Azure DevOps
- Azure Log Analytics
- Azure Storage
- BambooHR
- Big Fix
- BigPanda
- Bitbucket
- Bitdefender
- Bitsight
- Bitwarden
- Black Duck
- Black Kite
- Blink
- BMC Remedy
- Box
- Brinqa
- Cato Networks
- Censys
- Check Point Harmony
- Check Point Infinity Events
- Check Point XDR-XPR
- Check Point Management
- Checkmarx One
- Checkmarx SAST
- Chorus
- Chronicle
- Cisco Advanced Phishing Protection
- Cisco Domain Protection
- Cisco Meraki
- Cisco Talos
- Cisco Umbrella
- Cisco Webex
- Claroty xDome
- ClearPass
- ClickHouse
- ClickUp
- Cloud Custodian
- Cloudflare
- Cobalt
- Compass
- Confluence
- Confluence Data Center
- Coralogix
- Coralogix Incident Management
- Cortex XDR
- Cortex Xpanse
- CredStash
- Cribl
- CrowdStrike
- CyberArk
- Cybersixgill
- CyCognito
- Cyera
- Cylance
- Cyware CTIX
- Darktrace
- Dasera
- Databricks
- Datadog
- DataSet
- Delighted
- Delinea
- Devo
- Discord
- Docusign
- Domo
- Drata
- Dropbox
- Dropbox Business
- Druva
- Duo
- Duo Auth
- Dynatrace
- EasyVista
- EchoTrail
- Egnyte
- Egnyte Secure Govern
- Elasticsearch
- Entro
- Ermetic
- Exabeam
- Exchange Online
- Expel
- F5 BIG IP
- Falcon LogScale
- Falcon Surface
- Flare.io
- Forcepoint DLP
- Forescout
- FortiGate
- Freshservice
- GCP
- Ghostwriter
- Git
- GitHub
- GitLab
- Glean
- Gmail
- Google Calendar
- Google Chat
- Google Docs
- Google Drive
- Google Forms
- Google Looker
- Google Meet
- Google Sheets
- Google Workspace
- Grafana
- Grip Security
- GYTPOL
- Have I Been Pwned
- HiBob
- HubSpot
- Hunters
- Hybrid Analysis
- Hyperproof
- IBM Cloud
- IBM NS1 Connect
- IBM X Force
- Imperva
- incident.io
- Infoblox Cloud Services Portal
- Integrations
- Intercom
- Intezer
- IP API
- IPinfo
- IPWHOIS
- Ironscales
- Ivanti RiskSense
- Jamf
- JetBrains
- JFrog
- Jira
- Jira Data Center
- Joe Sandbox
- JumpCloud
- Kandji
- Keeper Secrets Manager
- Kenna Security
- KnowBe4
- KnowBe4 Events
- Kubernetes
- Lacework
- LaunchDarkly
- Linear
- Litmos
- LogicMonitor
- LogRhythm
- Manage Engine ServiceDesk Plus
- Mattermost
- Maven
- Microsoft Defender For Cloud
- Microsoft Defender For Cloud Apps
- Microsoft Defender For Endpoints
- Microsoft Defender XDR
- Microsoft E-Discovery
- Microsoft Entra ID
- Microsoft Graph
- Microsoft Intune
- Microsoft Office 365 Management Activity
- Microsoft Outlook
- Microsoft Purview
- Microsoft Sentinel
- Microsoft SQL Server
- Microsoft Teams
- Mimecast
- MISP
- Monday
- MongoDB Atlas
- MxToolbox
- Neo4j
- NetBox
- Netography
- Netskope
- New Relic
- Nightfall AI
- NinjaOne
- Notion
- Nozomi Networks
- Nuclei
- Nucleus
- Nutanix Hypervisor
- Obsidian
- Okta
- OneDrive
- OneLogin
- OneTrust
- OpenAI
- OpenCTI
- Opsgenie
- OPSWAT
- Oracle Cloud
- Oracle HCM
- Orca Security
- OWASP ZAP
- PagerDuty
- Palo Alto Cloud NGFW
- Palo Alto Firewall
- Panther
- Pentera
- Perception Point
- PhishLabs
- PhishLabs Incident Data
- PhishLabs Open Web Monitoring
- Pingdom
- PingID
- PingOne
- PlexTrac
- PortSwigger
- Postman
- Postman SCIM
- Power BI
- PowerShell
- Prisma Access
- Prisma Cloud CSPM
- Prisma Cloud CWP
- Prometheus
- Proofpoint
- Proofpoint ITM
- Proofpoint Protection Server
- Proofpoint Security Awareness Training
- Proofpoint TAP
- Proofpoint Threat Response Auto Pull
- Pub-Sub
- QRadar
- Qualys
- Rapid7
- Rapid7 InsightIDR
- Rapid7 InsightVM Cloud
- Rapid7 Threat Command
- Reco
- Recorded Future
- Red Hat IdM
- Rippling
- runZero
- SafeBase
- Sage HR
- SailPoint
- SailPoint IdentityIQ
- Salesforce
- SAP Ariba
- ScienceLogic
- Securin
- Securin VI
- SecurityScorecard
- Securonix
- SemGrep
- SentinelOne
- ServiceNow
- SharePoint
- Shodan
- Shopify
- Silverfort
- Slack
- Smartsheet
- Snipe-IT
- Snowflake
- Snyk
- SolarWinds Service Desk
- SonarQube
- Sophos
- Split
- Splunk
- Splunk Observability
- Splunk SOAR
- Spur
- StrongDM
- Sumo Logic
- Symantec EDR
- Sysdig
- Tableau
- Tanium
- TeamCity
- TeamViewer
- Telegram
- Tenable
- Tenable Security Center
- Terraform
- Terraform Cloud
- TheHive
- Thinkst Canary
- ThreatQuotient
- Trellix Email Security
- Trello
- Trend Vision One
- Twilio
- UKG HR
- Uptycs
- URLScan
- Vault
- Veracode
- Verkada
- Vertica
- VirusTotal
- VMware Carbon Black
- VMware vSphere
- WeChat
- WhatsApp
- Whois
- WildFire
- Wiz
- Workday
- Workspace ONE UEM
- YesWeHack
- Zendesk
- Zero Networks
- Zoom
- Zscaler Internet Access
- Zscaler Private Access
Actions
Get Domain Report
Get a domain report.
To learn more, visit the VirusTotal documentation.
Parameters
| Parameter | Description |
|---|---|
| Domain name | The domain that the report will be generated for. The domain must not include http:// or https://. For example - www.example.com or simply example.com. |
Example Output
{ "data": { "attributes": { "last_dns_records": [ { "type": "NS", "value": "a.iana-servers.net", "ttl": 11315 }, { "type": "TXT", "value": "v=spf1 -all", "ttl": 21600 }, { "type": "NS", "value": "b.iana-servers.net", "ttl": 11315 }, { "type": "A", "value": "93.184.216.34", "ttl": 20758 }, { "rname": "noc.dns.icann.org", "retry": 3600, "value": "ns.icann.org", "minimum": 3600, "refresh": 7200, "expire": 1209600, "ttl": 3600, "serial": 2022091151, "type": "SOA" }, { "priority": 0, "type": "MX", "value": "", "ttl": 20907 }, { "type": "TXT", "value": "wgyf8z8cgvm2qmxpnbnldrcltvk4xqfn", "ttl": 21600 }, { "type": "AAAA", "value": "2606:2800:220:1:248:1893:25c8:1946", "ttl": 20857 } ], "jarm": "29d29d15d29d29d21c42d42d0000003014e6e1a0bc19438ed392b132659e77", "whois": "Creation Date: 1995-08-14T04:00:00Z\nDNSSEC: signedDelegation\nDomain Name: EXAMPLE.COM\nDomain Status: clientDeleteProhibited https://icann.org/epp#clientDeleteProhibited\nDomain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited\nDomain Status: clientUpdateProhibited https://icann.org/epp#clientUpdateProhibited\nName Server: A.IANA-SERVERS.NET\nName Server: B.IANA-SERVERS.NET\nRegistrar IANA ID: 376\nRegistrar URL: http://res-dom.iana.org\nRegistrar WHOIS Server: whois.iana.org\nRegistrar: RESERVED-Internet Assigned Numbers Authority\nRegistry Domain ID: 2336799_DOMAIN_COM-VRSN\nRegistry Expiry Date: 2023-08-13T04:00:00Z\nUpdated Date: 2022-08-14T07:01:31Z\ncreated: 1992-01-01\ndomain: EXAMPLE.COM\norganisation: Internet Assigned Numbers Authority\nsource: IANA", "last_https_certificate_date": 1668669476, "tags": [], "popularity_ranks": { "Majestic": { "timestamp": 1668617881, "rank": 348 }, "Statvoo": { "timestamp": 1668617883, "rank": 14544 }, "Alexa": { "timestamp": 1668617881, "rank": 14544 }, "Cisco Umbrella": { "timestamp": 1668617882, "rank": 13100 } }, "last_analysis_date": 1668669175, "last_dns_records_date": 1668669476, "last_analysis_stats": { "harmless": 83, "malicious": 0, "suspicious": 0, "undetected": 13, "timeout": 0 }, "creation_date": 808372800, "whois_date": 1667311743, "reputation": -11, "registrar": "RESERVED-Internet Assigned Numbers Authority", "last_analysis_results": { "Bkav": { "category": "undetected", "result": "unrated", "method": "blacklist", "engine_name": "Bkav" }, "CMC Threat Intelligence": { "category": "harmless", "result": "clean", "method": "blacklist", "engine_name": "CMC Threat Intelligence" } }, "last_update_date": 1660460491, "last_modification_date": 1668680440, "last_https_certificate": { "size": 1867, "public_key": { "rsa": { "key_size": 2048, "modulus": "00955d96639ae51a7d5fa70bee0618f49d505c3710b1907506fe9246e07bda25e9fb60867598b73bfcfe2c9ce2598847f05854e290735b71409c622286f0990579b64e60c73553d3e212d556194e24b98bb1897a43f2830f8a7d41d1282b17b80a7ced7ffc8db0789740523819b970423c0961cf61271dd7735d4b709bd5ee38b3bf63a2c04d532c6e9f3f9579dfa3f6d7d14809ec2d1a56a3aed3b03456be8e90fc705a63af1777112a154233b538079d4a2be22c5912e6f1c556d486978f0846cd6ec147a108decc424385a773a1d53d2826a262d65969081853c0c1c594078342d76ca108ee625bf77134c58d2cc455b67640caae85a59f3014aea3e0e33033", "exponent": "010001" }, "algorithm": "RSA" }, "thumbprint_sha256": "7f2fe8d6b18e9a47839256cd97938daa70e8515750298ddba2f3f4b8440113fc", "tags": [], "cert_signature": { "signature": "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", "signature_algorithm": "sha256RSA" }, "validity": { "not_after": "2023-03-14 23:59:59", "not_before": "2022-03-14 00:00:00" }, "version": "V3", "extensions": { "certificate_policies": [ "2.23.140.1.2.2" ], "extended_key_usage": [ "serverAuth", "clientAuth" ], "authority_key_identifier": { "keyid": "b76ba2eaa8aa848c79eab4da0f98b2c59576b9f4" }, "subject_alternative_name": [ "www.example.org", "example.net", "example.edu", "example.com", "example.org", "www.example.com", "www.example.edu", "www.example.net" ], "tags": [], "subject_key_identifier": "f72a09d0245b1171eebabef43e1c3d56128816bb", "crl_distribution_points": [ "http://crl3.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl", "http://crl4.digicert.com/DigiCertTLSRSASHA2562020CA1-4.crl" ], "key_usage": [ "ff" ], "1.3.6.1.4.1.11129.2.4.2": "048201680166007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116bec", "CA": true, "ca_information_access": { "CA Issuers": "http://cacerts.digicert.com/DigiCertTLSRSASHA2562020CA1-1.crt", "OCSP": "http://ocsp.digicert.com" } }, "signature_algorithm": "sha256RSA", "serial_number": "0faa63109307bc3d414892640ccd4d9a", "thumbprint": "df81dfa6b61eafdffffe1a250240db5d2e6cee25", "issuer": { "C": "US", "CN": "DigiCert TLS RSA SHA256 2020 CA1", "O": "DigiCert Inc" }, "subject": { "C": "US", "ST": "California", "CN": "www.example.org", "O": "Internet Corporation for Assigned Names and Numbers", "L": "Los Angeles" } }, "categories": { "Forcepoint ThreatSeeker": "information technology", "Sophos": "information technology", "BitDefender": "computersandsoftware", "Comodo Valkyrie Verdict": "mobile communications", "alphaMountain.ai": "Information Technology" }, "total_votes": { "harmless": 17, "malicious": 5 } }, "type": "domain", "id": "example.com", "links": { "self": "https://www.virustotal.com/api/v3/domains/example.com" } }}
Workflow Library Example
Get Domain Report with Virustotal and Send Results Via Email
Preview this Workflow on desktop