Now users of Demisto’s Security Orchestration, Automation and Response (SOAR) platform have direct access to PolySwarm to run automated scans, searches and threat hunting, all from a single pane of glass.
Security Operations Centers (SOCs) can improve their ability to detect threats when they include PolySwarm in their Demisto playbooks.
PolySwarm is a novel line of defense built for SOC teams and malware analysts.
PolySwarm uses threat bounties to economically incentivize early and accurate threat detection on suspicious files and URLs, submitted by enterprises and individual researchers.
Demisto users can install the PolySwarm app directly from the Demisto dashboard and plug in their PolySwarm API key to start using. Sign up/login at https://polyswarm.network and the API key is available in your account settings.
The full list of features and examples of using PolySwarm in a Demisto playbook are available on GitHub.
To learn more about PolySwarm, visit polyswarm.io
To try PolySwarm, visit polyswarm.network
You can find PolySwarm in the "Threat Intelligence" category in Demisto: