BEGIN:VCALENDAR PRODID:-//vBulletin 6//EN VERSION:2.0 CALSCALE:GREGORIAN BEGIN:VEVENT UID:147ad4d9-12e5-47ec-b824-b77e46df1310 DTSTAMP:20260519T092953Z SUMMARY:ThreatScraper: Automated Threat Intelligence Gathering and Anal... - Aaron Morath &\; Dr. Scott Graham DESCRIPTION:ThreatScraper: Automated Threat Intelligence Gathering and Anal ysis for VirusTotal\n\nSaturday August 12\, 14:00 – 15:55\, Accord Board room\, Forum\n\nAaron Morath & Dr. Scott Graham\n\nVirusTotal serves as a popular platform for aggregating malware information submitted by Anti-Vir us (AV) software providers\, which can be searched using parameters such a s hashes (SHA-1\, SHA-256\, MD5)\, file names\, and malicious web links. I n order to enhance and automate the process of malware intelligence gather ing\, we introduce ThreatScraper\, a Python-based tool that automates free API queries and rescanning tasks on VirusTotal. ThreatScraper is designed to periodically request reports on specified files and save the results i n a local database or Excel file. It allows users to pull and aggregate ma licious file reports from multiple AV vendors over time\, providing insigh ts into the adoption of malware detection across providers. Easily impleme nted from any Windows command line\, ThreatScraper can rescan a file\, pul l a report\, and then sleep until the next designated time identified by t he user.\n\nCaptain Aaron "AJ" Morath\, CEH/CompTIA Pentest+\, is a gradua te student at the Air Force Institute of Technology\, where he is involved in researching malware identification and propagation. His thesis work co ncentrates on developing innovative strategies to combat evolving cybersec urity threats and enhance security measures. AJ has served as the Defensiv e Cyber Operator (DCO) Officer in Charge (OIC) of the NASIC DCO team for t hree years. He oversaw the security and defense of an enterprise network c omprising over 6\,000 connected devices.\n\nDr. Scott Graham is a Professo r of Computer Engineering at the Air Force Institute of Technology. His re search interests center on cyber physical systems\, looking at the interse ction between real physical systems and the computers that control them. S pecific areas of interest include cyber physical systems security\, comput er architecture\, embedded computing\, critical infrastructure protection\ , and vehicular cyber security.\n\nAudience - Offensive and Defensive Cybe r​ URL:https://forum.defcon.org/node/246349 DTSTART:20230812T220000Z DTEND:20230812T235501Z LOCATION:Accord Boardroom\, Forum END:VEVENT END:VCALENDAR