Skip to content
/ power-av Public

PowerShell script that monitors any executed file and then sends the hash to VirusTotal for Analysis

License

MIT license
7 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Sorsnce/power-av

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
LICENSE
LICENSE
 
 
PowerAV.ps1
PowerAV.ps1
 
 
README.md
README.md
 
 

Repository files navigation

PowerAV

PowerShell script that monitors any executed file and then sends the hash to VirusTotal for Analysis

Variables to Change

Change the API key to your VirusTotal API
$API = "YOUR API KEY" ------- Line 119

Change the level depending on how sensitive you want your email alert to trigger

  • Low = 35
  • Medium = 25
  • High = 15
  • Paranoid = 5

$level = "NUMBER VALUE ABOVE" ----- Line 127

Change the email address to reflect the desired send to
$recipients = "SecurityTeam@test.com" --------- Line 131

Change the email address to reflect the desired send from
$Sender = "VirusDetected@test.com" ----------- Line 133

Change the following to your SMTP server to send email alerts from the Virustotal report
$smtpserver = "smtp.test.local" ---------- Line 137

Write up - https://medium.com/@Sorsnce/powershell-anti-virus-with-virustotal-api-e5b3f46a158e

About

PowerShell script that monitors any executed file and then sends the hash to VirusTotal for Analysis

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages