Discussions

Alerting - direction of travel

I'd be grateful if someone could clarify if, when I set up an alert for my public IP address space. Does this notify for traffic matching the alert criteria originating from my IP space outbound towards the internet, for traffic matching the alert criteria destined for my IP space originating from the internet, or does it alert in both directions?

Posted by Jambo over 1 year ago

ANSWERED

GreyNoise threat intel feed into GuardDuty

Does GreyNoise have a feed that I can use in GuardDuty for alerting?

Posted by andrewschmidt over 2 years ago

ANSWERED

Bad IP list updated

How often is the Bad IP list for Greynoise updated? Every 24 hours?

Posted by Naveen Prabhu over 2 years ago

ANSWERED

Tracking vulnerability exploitation

Is it possible to use the greynoise API to return a list of all CVEs that are observed to be exploited? That is, to track observed (not successful) exploitation over time?

Posted by Sasha Romanosky over 2 years ago

ANSWERED

What IP addresses does GreyNoise listen on

Received an alert for one of our addresses - realise it could be spoofed but would like to check our logs against the known GreyNoise IPs to rule the alert out..

Posted by Mark almost 3 years ago

ANSWERED

Very limited data on one of the two major ISP's in the Philippines

In the Philippines, there are two major ISP's: PLDT and Globe. There's also a new kid on the block called Dito.

Posted by Lambert over 3 years ago

metadata.rdns does not find a certain IP address

Searching for metadata.rdns:research-scanner.com does not find 157.245.176.143
It has 19 results excluding 157.245.176.143

Posted by Viktor Szépe over 3 years ago

ANSWERED

Supports querying of IPv6

Does greynoise ip-context api supports querying ipv6 addresses also?

Posted by Lil Thapa over 3 years ago

ANSWERED

RIOT API

Hi,

Posted by Ashley over 3 years ago

ANSWERED

How many API hits allowed per second or day with a greynoise subscription account?

Posted by Haseeb over 3 years ago