VirusTotal Cog
The VirusTotal cog integrates with VirusTotal’s API to automatically scan file attachments for malware and viruses.
Features
File Scanning
- Automatic Scanning: Scan all file attachments
- Hash-based Checks: Fast hash lookup for known files
- Detailed Reports: Comprehensive scan results
- Multiple Engines: Results from various antivirus engines
Access Control
- Channel Exclusions: Skip scanning in certain channels
- Role Exclusions: Don’t scan files from trusted roles
- User Exclusions: Skip specific users
- File Type Filtering: Focus on executable files
Reporting
- Embed Results: Rich display of scan results
- Risk Assessment: Color-coded threat levels
- Engine Breakdown: Individual antivirus results
- Action Recommendations: Suggested responses
Commands
| Command | Description | Permissions |
|---|---|---|
/vt scan <url> | Manually scan a URL | None |
/vt status | Check VirusTotal API status | None |
Configuration
- Enabled: Toggle file scanning
- Excluded Channels: Channels to skip
- Excluded Roles: Roles whose files to skip
- API Key: VirusTotal API key required
Best Practices
- API Key Security: Keep API key secure
- False Positive Awareness: Not all detections are accurate
- User Communication: Explain scanning to users
- Privacy Balance: Respect user file sharing