We welcome DOCGuard - Detect Maldocs in Seconds! to VirusTotal! blog.virustotal.com/2023/06/virust… by Karl Hiramoto

Sigma rules are one of the most powerful tools for Threat Hunters. Do you know that (for most cases) you can easily convert Sigma into LiveHunt/RetroHunt YARA rules? Find all the details here, by Karl Hiramoto: blog.virustotal.com/2023/06/threat…

#Sysmon 15 is out and brings a new event type, FileExecutableDetected, which allows for much more detection opportunities. I've wrote up some of my thoughts on what this feature brings and where it could be even better in this blog post medium.com/@olafhartong/s…

There’s a new version of the VirusTotal plugin for IDA Pro that supports both 7.x and 8.x versions of IDA Pro. VirusTotal Hex-Rays SA

Syntax highlighting, auto-complete, templates, testing capabilities ... Our new YARA editor couldn't look better! Check out all the details here, by leximagination: blog.virustotal.com/2023/07/action…

Today we announce YARA Netloc, a new feature extending YARA's supported entities from traditional files to network infra, including domains, URLs and IPs. This opens endless possibilities for hunting and monitoring. All details here, by leximagination: blog.virustotal.com/2023/07/action…

Our new VirusTotal Malware Trends Report: "Emerging formats and delivery techniques" is out! by Gerardo Fdez., Alexey Firsh, fernando blog.virustotal.com/2023/07/virust…

Hispasec's solution in VT's Crowdsourced AI is revealing curious cases. The analysis is very good, verdict fits... Yet, is this malicious actor or just company's poor practices monitoring Excel docs? What are your thoughts? virustotal.com/gui/file/2bc5b…

You can now automatically generate YARA LiveHunt rules for IOC tracking. Learn how, by leximagination: blog.virustotal.com/2023/08/action…

We keep adding more security partners to our Crowdsourced AI effort. We are thrilled to welcome NICS Lab and their AI analysis engine for Powershell scripts, learn more about it at blog.virustotal.com/2023/08/crowds…, by Bernardo Quintero

The #flareon10 countdown is now live at flare-on.com. Clear your weekend plans for Sept. 30th.

Create YARA rules by clicking on observable properties. No need to remember VT YARA module by heart! by Joseliyo blog.virustotal.com/2023/09/its-al…

Calling all security hunters! 📢 Want to know how to transform a VT Intelligence query into a Livehunt? Joseliyo provides all the keys, including examples and best practices, in our latest blog post. blog.virustotal.com/2023/10/the-pa…

Unleash your VirusTotal admin prowess with our brand new definitive guide, by leximagination: blog.virustotal.com/2023/11/the-de…

Empower your threat hunting with actionable threat intel! 🕵️‍♀️ Discover how VTI queries based on third-party intel can enhance your understanding of malicious campaigns, streamline threat hunting, and automate threat monitoring, by Joseliyo: blog.virustotal.com/2023/11/action…

Yea, I feel you

Harness TTPs for malware hunting! Our new blog post shows you how to leverage VirusTotal to hunt for ransomware, keyloggers & more, by leximagination : blog.virustotal.com/2024/02/follow…

Threat actors actively leverage COM object hijacking for persistence and privilege escalation. We identified the most commonly abused COM objects and CLSIDs to help you stay safe by Joseliyo: blog.virustotal.com/2024/03/com-ob…

Los mayores más conectados afrontan los desafíos de la ciberseguridad diariosur.es/cronica-univer…

Diploma de Experto Universitario en Ingeniería Inversa e Inteligencia Malware. Nueva edición del título que ha aportado más profesionales a Google Málaga. Plazas limitadas, regístrate ahora: nics.uma.es/Titulo-Experto…