Skip to main content

Hi 

With regards to Google Chronicle, I do have a doubt and would like to know if anyone can assist or guide me .Is Virus total available with Google Secops by default or is there a separate cost involved ?

Based on the below diag I was able to use the GCTI TOR Feeds and wish to use the VT if its available

I can see entity summary . I wish to use this information in my alerts . 

However when i am running the query it showing 0 results 

 

 

 

 

 

 

Leveraging VT data within rules & the entity graph requires a subscription to Google SecOps Enterprise+. If you are on this tier and it's still not working, I recommend opening a support ticket.


-mike

Reply


Terms & ConditionsCookie settings
Privacy Policy Terms of Service Gen AI Policy Community Guidelines Cookie Settings

© 2025 Google. All rights reserved.