Skip to content

Releases: jerotire/VirusTotal-ShellHelper

v1.0.0 - Initial Release

05 Mar 21:57
@jerotire jerotire
v1.0.0
d3f6421
This commit was signed with the committer’s verified signature.
jerotire James Wragg
GPG key ID: FA726B1571FFF180
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.0.0 - Initial Release Latest
Latest

VirusTotal Shell Helper v1.0.0

Complete shell-based VirusTotal integration for Linux with automatic file scanning, tagging, quarantine, and audit logging.

What's Included

Core Scripts:

  • vt-check - Main scanning tool with auto-tagging and quarantine support
  • vt-actions.sh - Core functionality library (tagging, quarantine, audit logging)
  • vt-manage - Quarantine and audit management CLI with two-level commands
  • install.sh - Automated installation with optional tmpfs mount setup
  • uninstall.sh - Comprehensive removal tool

Key Features

Scanning & Analysis:

  • Hash-based lookup - Check if file exists in VirusTotal before uploading
  • Auto-upload - Upload new files for analysis automatically
  • Desktop notifications - Progress updates and results with action buttons
  • File manager integration - Right-click context menu (Dolphin, Nautilus, Nemo, Thunar, Caja)

Security & Protection:

  • Auto-tagging - Files tagged as vt-clean or vt-malicious (visible in Dolphin)
  • Auto-lockdown - Malicious files become read-only with no execute permissions
  • One-click quarantine - Isolate malicious files from notification
  • Kernel-level isolation - Optional tmpfs/noexec mount for quarantine directory

Audit & Management:

  • JSON audit logging - Complete history of all scans and file actions
  • Hash-based storage - Quarantined files stored by SHA256 hash
  • Restore capability - Restore quarantined files to original location with original permissions
  • Separate management - Independent quarantine and audit clear operations

Installation

Clone the repository and run install.sh, then configure your API key with vt init.

Get a free API key at: https://www.virustotal.com/gui/my-apikey

Quick Start

Scan files with vt-check, manage quarantine with vt-manage quarantine commands, and view audit logs with vt-manage audit commands.

Requirements

  • vt - VirusTotal CLI (auto-downloaded by installer)
  • jq - JSON processor
  • sha256sum - Usually pre-installed

Documentation

Complete documentation available in the Wiki at https://github.com/SkyCMD-Labs/VirusTotal-ShellHelper/wiki

Privacy Notice

Files uploaded to VirusTotal are shared with security researchers and antivirus companies. Do not upload sensitive or confidential files.

Note: This is an unofficial tool and is not affiliated with or endorsed by VirusTotal.

Assets 2
Loading