Discussions
Tracking vulnerability exploitation
Is it possible to use the greynoise API to return a list of all CVEs that are observed to be exploited? That is, to track observed (not successful) exploitation over time?
Posted by Sasha Romanosky 5 days ago
What IP addresses does GreyNoise listen on
Received an alert for one of our addresses - realise it could be spoofed but would like to check our logs against the known GreyNoise IPs to rule the alert out..
Posted by Mark 5 months ago
Very limited data on one of the two major ISP's in the Philippines
In the Philippines, there are two major ISP's: PLDT and Globe. There's also a new kid on the block called Dito.
PLDT is the biggest of the three, but GreyNoise has data on only 3 (!) IP addresses belonging to PLDT.
https://www.greynoise.io/viz/query/?gnql=metadata.organization%3APLDT
Meanwhile, Globe has over 7,000 and Dito has over 170.
https://www.greynoise.io/viz/query/?gnql=metadata.organization%3AGlobe
https://www.greynoise.io/viz/query/?gnql=metadata.organization%3ADito
So I'm just wondering what is going on here. Where are you guys getting your data for Philippine IP's?
Posted by Lambert 11 months ago
metadata.rdns does not find a certain IP address
Searching for metadata.rdns:research-scanner.com does not find 157.245.176.143
It has 19 results excluding 157.245.176.143
Please advise.
Posted by Viktor Szépe 11 months ago
Supports querying of IPv6
Does greynoise ip-context api supports querying ipv6 addresses also?
Posted by Lil Thapa 12 months ago
RIOT API
Hi,
How can we query the RIOT database using the API? Is it only through IP lookup, or can we query it via tags, like the GNQL queries?
Thank you.
Posted by Ashley about 1 year ago
How many API hits allowed per second or day with a greynoise subscription account?
Posted by Haseeb about 1 year ago