Threat Informed Defense with AWS Lambda and VirusTotal

Learn how to securely create a light weight anti-malware S3 scanner with AWS Lambda with Python and the VirusTotal API.

Introduction

Modern blue teams now leverage a concept called: Cyber Threat Informed Defense (CTID). Thanks to new frameworks, tools, and the progression of the industry as a whole, we can bolster detection capabilities and utilize threat intelligence sources like VirusTotal. The goal of CTID is to increase threat detection using multiple teams or group inputs as areas to prioritize…