[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-09-07 UTC."],[[["\u003cp\u003eReversingLabs Titanium integration version 9.0 allows querying for hash information to get malware details and runs on the Filehash entity.\u003c/p\u003e\n"],["\u003cp\u003eThe "Get Malware Details" action retrieves information such as malware presence, status, scanner details, hash values, and timestamps.\u003c/p\u003e\n"],["\u003cp\u003eThe "Ping" action verifies the user's connection to ReversingLabs Titanium Cloud and is able to run on all entities.\u003c/p\u003e\n"],["\u003cp\u003eBoth actions, "Get Malware Details" and "Ping", produce a script result indicating success or failure, represented as a boolean value: true/false.\u003c/p\u003e\n"],["\u003cp\u003eThe full source code for this integration is available for download from a public storage bucket.\u003c/p\u003e\n"]]],[],null,["# ReversingLabs Titanium\n======================\n\nIntegration version: 9.0\n| **Note:** This integration uses one or more open source components. You can download a copy of the full source code of this integration from the [storage bucket](https://storage.googleapis.com/csoar_public_integrations/ReversinglabsTitanium.zip).\n\nConfigure ReversingLabs Titanium integration in Google Security Operations\n--------------------------------------------------------------------------\n\nFor detailed instructions on how to configure an integration in\nGoogle SecOps, see [Configure\nintegrations](/chronicle/docs/soar/respond/integrations-setup/configure-integrations).\n\nActions\n-------\n\n### Get Malware Details\n\n#### Description\n\nQuery ReversingLabs Titanium for hash information.\n\n#### Parameters\n\nN/A\n\n#### Run On\n\nThis action runs on the Filehash entity.\n\n#### Action Results\n\n##### Entity Enrichment\n\n##### Insights\n\nN/A\n\n##### Script Result\n\n##### JSON Result\n\n [\n {\n \"EntityResult\": {\n \"rl\": {\n \"malware_presence\": {\n \"status\": \"KNOWN\",\n \"scanner_count\": 41,\n \"scanner_percent\": 0.0,\n \"scanner_match\": 0,\n \"query_hash\": {\n \"sha1\": \"81fe8bfe87576c3ecb22426f8e57847382917acf\"\n },\n \"first_seen\": \"2013-03-17T15:10:55\",\n \"threat_level\": 0,\n \"trust_factor\": 0,\n \"last_seen\": \"2019-05-18T19:48:34\"\n }\n }\n },\n \"Entity\": \"81fe8bfe87576c3ecb22426f8e57847382917acf\"\n }\n ]\n\n### Ping\n\n#### Description\n\nVerify that the user has a connection to ReversingLabs Titanium Cloud via the\nuser's device.\n\n#### Parameters\n\nN/A\n\n#### Run On\n\nThis action runs on all entities.\n\n#### Action Results\n\n##### Entity Enrichment\n\nN/A\n\n##### Insights\n\nN/A\n\n##### Script Result\n\n##### JSON Result\n\n N/A\n\n**Need more help?** [Get answers from Community members and Google SecOps professionals.](https://security.googlecloudcommunity.com/google-security-operations-2)"]]
