Many of our fans and followers have asked about the status of our project’s development in relation to the roadmap that we presented at the inception of PolySwarm. You asked, and we have answers!
As we closed Q2, we were close to reaching a number of our outlined roadmap goals, while also introducing additional features not outlined in the roadmap. During Q1 and Q2, we received a lot of excellent feedback from enterprises doing Proof-of-Concepts (PoCs), microengine developers, and other potential users. Based on that feedback, we have prioritized releasing the most in-demand features.
Threat Hunting: Threat Hunting (released May 2019) was one of those critical features we released. It allows PolySwarm users who have an Enterprise plan or higher to use rule sets (called YARA rules) to query against incoming artifacts, and to search through our inventory of artifacts. This is important for security researchers and incident response (IR) teams that need to expand their knowledge of a threat, by identifying variants of known-malicious samples. (More details about Threat Hunting here.)
Metadata Searching: Metadata searching (released July 2019) was another in-demand feature we released. It allows PolySwarm users who have an Enterprise plan or higher to perform keyword searches through all of the metadata we’ve collected about every artifact. This is also very important for security researchers and incident response teams.
URL Scanning: We also expanded the supported artifact types in the marketplace to include URLs. We are currently in beta for URL Scanning (released just post Q2, but part of the 2.0 release and currently available at the command line), so PolySwarm users can get a maliciousness determination for suspicious URLs. More developments on URL Scanning coming soon.
In terms of detection of malicious network traffic (noted in the Q2 roadmap), we are still working on that one as there are some complexities that exist to bring this to market; it is still on the project plan and we are working towards it.
While we have not extended into offering PolySwarm as a home user product (as outlined in the Q2 goals roadmap), PolySwarm is available for anyone to scan artifacts at the free, Community, level.
We also wanted to note that there are now additional engines on the PolySwarm portal (polyswarm.network) working to help power the network! Here you can see engine performance in real-time.
Please join our live AMA on July 30th to get your questions answered directly from PolySwarm Co-Founder and CSO Ben Schmidt!
We are very excited for the continued forward progress both on the development side and employee growth side! We recently added three new developers to our growing team who are diligently working away with the rest of the devs.