The PolySwarm Blog

Analyze suspicious files and URLs, at scale, millions of times per day. Get real-time threat intel from a crowdsourced network of security experts and antivirus companies competing to protect you.

PolySwarm now integrated with Demisto’s SOAR platform

Nov 7, 2019 12:08:22 PM / by PolySwarm Team



Now users of Demisto’s Security Orchestration, Automation and Response (SOAR) platform have direct access to PolySwarm to run automated scans, searches and threat hunting, all from a single pane of glass. 

Security Operations Centers (SOCs) can improve their ability to detect threats when they include PolySwarm in their Demisto playbooks.

PolySwarm is a novel line of defense built for SOC teams and malware analysts. 

PolySwarm uses threat bounties to economically incentivize early and accurate threat detection on suspicious files and URLs, submitted by enterprises and individual researchers. 

Demisto users can install the PolySwarm app directly from the Demisto dashboard and plug in their PolySwarm API key to start using. Sign up/login at and the API key is available in your account settings. 

The full list of features and examples of using PolySwarm in a Demisto playbook are available on GitHub.


To learn more about PolySwarm, visit

To try PolySwarm, visit


You can find PolySwarm in the "Threat Intelligence" category in Demisto:





PolySwarm Team

Written by PolySwarm Team

Subscribe to Email Updates

Lists by Topic

see all

Posts by Topic

See all

Recent Posts