Analyze IP Address
Retrieve detailed information about a specific IP address.
For more information on the API for analyzing an IP address, see Get an IP address report (opens in a new tab).
SDK Import:
from admyral.actions import virus_total_analyze_ipArguments:
| Argument Name | Description | Required |
|---|---|---|
IP Address ip_address | The IP address to analyze. | Yes |
Returns
A JSON object.
Required Secrets
| Secret Placeholder | Description |
|---|---|
VIRUS_TOTAL_SECRET | VirusTotal secret. See VirusTotal setup |
SDK Example
result = virus_total_analyze_ip(
ip_address="8.8.8.8",
secrets={
"VIRUS_TOTAL_SECRET": "my_stored_virus_total_secret"
}
)Example Output:
Typical successful response:
{
"data": {
"attributes": {
"as_owner": "Some AS Owner",
"asn": 12345,
"continent": "EU",
"country": "ES",
"last_analysis_stats": {
"harmless": 72,
"malicious": 4,
"suspicious": 0,
"undetected": 8,
"timeout": 0
},
"last_analysis_results": {
"Some Antivirus": {
"category": "harmless",
"result": "clean",
"method": "blacklist",
"engine_name": "Some Antivirus"
},
"Another Antivirus": {
"category": "malicious",
"result": "malware",
"method": "blacklist",
"engine_name": "Another Antivirus"
}
},
"network": "1.2.3.0/24",
"regional_internet_registry": "RIPE NCC",
"reputation": -10,
"tags": ["malicious", "spam"],
"whois": "Whois data"
},
"type": "ip_address",
"id": "1.2.3.4",
"links": {
"self": "https://www.virustotal.com/api/v3/ip_addresses/1.2.3.4"
}
}
}Typical error response:
{
"error": {
"code": "NotFoundError",
"message": "IP address not found"
}
}