Has anybody tried the below scenario? If yes, can I get some guidance?
Malicious IPs are shown on Splunk dashboard.
I want the script to automatically scan these IP with Virustotal(if possible)...if found malicious, then it would add it to Cisco ASA ACL to block it.
Is this possible?