Crowdsourced Malware Analysis
for new and emerging threats

PolySwarm is a more effective way to detect, analyze and respond to the latest threats, the ones more likely to go undetected by existing solutions.

We are a launchpad for new technologies and innovative threat detection methods, where commercial solutions and specialized engines compete to detect threats, and get compensated based on performance.

Access

Why PolySwarm?

Early Detection of Threats

Specialized Engines

Higher Accuracy

Performance-Based Compensation

SOC Automation

Contextual Threat Scoring

First-Seen Samples

At Scale

Specialized Engines
to protect against the latest threats

PolySwarm is powered by a network of threat detection engines. It combines wide coverage from commercial engines, with the ability to detect threats earlier from specialized solutions.

Distribution of Malware

Specialized Engines
to protect against the latest threats

Specialized engines are niche and research-driven, often authored by independent, well known researchers and security teams, developing cutting-edge threat detection methods.

PolySwarm brings them together to cover the existing protection gaps and better protect enterprises against new threats.

Contributors Develop an Engine

Crowdstrike Falcon ML

What's cool / unique:
Market-leading NGAV and integrated threat intelligence and immediate response
Technology
Machine Learning, AI
File types:
All types

Concinnity

What's cool / unique:
Tracks cryptocurrency addresses
Specialty:
Ransomware crypto
File types:
All types
Author:
Éireann Leverett

Android Judge

What's cool / unique:
A combination of emulation and static analysis
Specialty:
Machine Learning
File types:
Android Apps
Author:
Caleb Fenton, Head of research at SentinelOne

JoinpolyX

A community of anti-malware researchers with a shared goal of making malware hard.

Apply

Performance-Based Compensation
To Improve Accuracy

PolySwarm’s economic model incentivizes specialization and rewards early and accurate detection of threats.

Engines are incentivized to respond only when confident
Reflect confidence behind each opinion by staking money
And get compensated based on the accuracy of their determinations

Engine A

Engine B

Engine C

Engine D

PolySwarm Network Stats

1.5M+

Malware Verdicts per Day

+40

Threat Detection Engines

500k+

New Malicious Samples per Day

+25%

Unique or First-Seen Malicious Samples

Contextual Threat Scoring
To Enable SOC Automation

Multiscanners and crowdsourced solutions provide multiple and often conflicting opinions on potential threats. Who should you trust? Concluding requires additional intuition-based work, which takes time, produces inconsistent results and can not be automated.

PolyScore™ provides the probability a given file contains malware in a single, authoritative number.

Unique & First-Seen Samples
At Scale

'Multiple and diverse sample streams sourced from OEMs, global 3rd party malware streams, the polyX community, PolySwarm users and customers in public communities.'