How do I connect PowerShell Connector to VirusTotal in 5 minutes?
Execute the following steps to connect PowerShell Connector to VirusTotal. You only need knowledge of PowerShell Connector, your own business and the VirusTotal administration.
VirusTotal is a web site of Google for analysis and queries on malware infections on files.
No technical knowledge is needed nor knowledge on the VirusTotal APIs to connect VirusTotal to PowerShell Connector. This step-by-step plan will tell you exactly which steps you need to go through on Invantive Cloud to create your own Azure data warehouse with data from VirusTotal.
The steps to connect PowerShell Connector to VirusTotal are:
- Register an Invantive Cloud account.
- Create a VirusTotal database.
- Make the VirusTotal database available through the Microsoft OData connector.
- Connect PowerShell Connector to VirusTotal through the connector.
- Load data from VirusTotal into PowerShell Connector data warehouse.
Invantive Cloud offers a VirusTotal connector to download data from VirusTotal into PowerShell Connector, but there are over 75 other connectors available also for SQL, Power BI Desktop, Power BI Service, Power Query and/or Azure Data Factory.
With the VirusTotal connector for PowerShell Connector you will by default fetch the data from all connected VirusTotal companies in your dashboard. You can limit the number of VirusTotal companies that are retrieved in PowerShell Connector through the Database settings. For example, you can also limit the connector for PowerShell Connector to the data from exactly one VirusTotal company. Of course, you can also filter the data by a specific VirusTotal company using a filter step in PowerShell Connector. The VirusTotal connector for PowerShell Connector has advanced optimizations for great real-time performance with both a single VirusTotal company as well as with hundreds of VirusTotal companies.
When you are having questions, please check the forums for VirusTotal.
Register Account on Invantive Cloud
Skip this step when you already have an account on Invantive Cloud. Otherwise execute the following steps one time to register an account on Invantive Cloud:
-
Go to Invantive Cloud start page.
Select the Log on-button.
-
Select the Next-button.
-
Select the Next-button.
Enter your password and repeat the provided password.
You will receive a six-digit verification code by email within 2 minutes.
-
Select the Sign Up-button.
-
Log on now. >
-
Make sure you have an authentication app installed on your phone. Select the Next-button.
-
Add the displayed QR code to the authentication app, enter the current verification code, and choose "Finish".
-
The Invantive Cloud dashboard will be shown.
You now have a login code on Invantive Cloud with which you can set up the connection with VirusTotal and numerous other platforms. You will use the same Invantive login code and workflow for all other platforms.
Create VirusTotal database
In this step, we set up a database with data from VirusTotal. The database is "virtual" because it is not a traditional database, but is fed real-time from VirusTotal. Invantive Cloud provides PowerShell Connector with a real-time link to VirusTotal. The database will be used for all your VirusTotal reporting with PowerShell Connector. So you only need to perform these steps once.
-
Click the Add Database button.
-
Please fill out the form with login information for VirusTotal.
Select the OK-button.
Congratulations! You can now process data from VirusTotal within the Invantive Cloud website. You can do this for example with the interactive SQL editor.
Grant connection from PowerShell Connector access to VirusTotal
To retrieve the data from PowerShell Connector we create a link via Invantive Bridge Online. This creates a "bridge" between the cloud of Invantive and the standard OData connector that is available in every version of PowerShell Connector. You do not need to install anything locally: no connector, no ado.NET provider and no PowerShell Connector add-on neither.
Execute the following steps to safely use the data from VirusTotal outside of Invantive Cloud:
Next to the database you will find an orange text requesting you to allow access from your current location (IP address). Select the nearby orange button.
You must completely disable IP address checking by entering an asterisk ("*") since Microsoft PowerShell Connector consists of hundreds of thousands of servers across the globe.
You are now ready to import the VirusTotal data into PowerShell Connector.
Configure PowerShell Connector connector for VirusTotal
You will now pull in PowerShell Connector data from VirusTotal through the established link.
Please note again that Invantive Cloud under the hood handles all complexity such as setting up credentials such as a refresh token, acquiring an access token, optimizing and parallelizing access, accessing an API within the rate limits, scopes and security restrictions. There is absolutely no need for knowledge on complex technical topics such as OAuth access tokens or API. The Microsoft Azure Data Factory steps, activities and pipelines can be constructed using just the OData feed and basic authentication.
Execute the following steps:
-
Enter in the window the Bridge Online URL of the PowerShell Connector database. This URL containing the data can be found in the Database-form of Invantive Cloud. Choose authentication type 'Basic authentication'. Enter the Invantive Cloud user name and password.
-
The list of available VirusTotal tables appears. Select the desired tables and construct your pipeline in Microsoft Azure Data Factory.