[GH-ISSUE #4] [FEATURE] VirusTotal IP address scan #4

New issue

Closed

opened 2026-03-02 02:59:18 +03:00 by kerem · 0 comments

kerem commented 2026-03-02 02:59:18 +03:00

Owner

Copy link

Originally created by @fl0ppy-d1sk on GitHub (May 6, 2022).
Original GitHub issue: https://github.com/bunkerity/bunkerweb-plugins/issues/4

Plugin(s)
VirusTotal

What's needed and why ?
In addition to files, VirusTotal can also "scan" IP addresses (sample report : https://www.virustotal.com/gui/ip-address/1.2.3.4). We can use it to deny access if the IP of a client is detected as malicious by some vendors.

The following settings can be implemented :

• SCAN_IP_ADDRESS=yes/no : enable/disable scan of IP address
• IP_MALICIOUS_COUNT : Minimum number of "malicious" detections to consider the IP as rogue.
• IP_SUSPICIOUS_COUNT : Minimum number of "suspicious" detections to consider the IP as rogue.

Implementations ideas (optional)
https://developers.virustotal.com/reference/ip-info

Originally created by @fl0ppy-d1sk on GitHub (May 6, 2022). Original GitHub issue: https://github.com/bunkerity/bunkerweb-plugins/issues/4 **Plugin(s)** VirusTotal **What's needed and why ?** In addition to files, VirusTotal can also "scan" IP addresses (sample report : https://www.virustotal.com/gui/ip-address/1.2.3.4). We can use it to deny access if the IP of a client is detected as malicious by some vendors. The following settings can be implemented : * `SCAN_IP_ADDRESS=yes/no` : enable/disable scan of IP address * `IP_MALICIOUS_COUNT` : Minimum number of "malicious" detections to consider the IP as rogue. * `IP_SUSPICIOUS_COUNT` : Minimum number of "suspicious" detections to consider the IP as rogue. **Implementations ideas (optional)** https://developers.virustotal.com/reference/ip-info

kerem 2026-03-02 02:59:18 +03:00

• closed this issue
• added the
  virustotal
  enhancement
  labels

kerem referenced this issue 2026-03-02 02:59:30 +03:00

[PR #8] [CLOSED] Merge pull request #7 from bunkerity/main #23

kerem referenced this issue 2026-03-02 02:59:30 +03:00

[PR #9] [MERGED] Merge branch 'dev' into branch 'main' #25

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

dev

dependabot/docker/coraza/api/dev/golang-1.26-alpine

dependabot/github_actions/dev/github/codeql-action-4.32.2

dependabot/github_actions/dev/docker/login-action-3.7.0

dependabot/github_actions/dev/actions/checkout-6.0.2

dependabot/go_modules/coraza/api/dev/github.com/corazawaf/coraza/v3-3.3.3

v1.10

v1.9

v1.8

v1.7

v1.6

v1.5

v1.4

v1.3

v1.2

v1.1

v1.0

v0.2

Labels

Clear labels   

bug

  

bug

  

clamav

  

crowdsec

  

documentation

  

enhancement

  

enhancement

  

enhancement

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

virustotal

  

virustotal

No labels

bug

bug

clamav

crowdsec

documentation

enhancement

enhancement

enhancement

pull-request

question

virustotal

virustotal

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/bunkerweb-plugins#4

No description provided.