A Note From GreyNoise on Integrations

GreyNoise wants to make it as easy as possible to integrate into your favorite security tools. Below is a list of the tools that have integrations today, but we are always looking to expand. If you work with a tool that you think GreyNoise should be integrated with, please reach out to us at [email protected].

Current Integrations

Below are some of our most popular integrations.

SIEM

Company	Product	Link	Subscription API Support	Community API Support
Elastic	Logstash	Logstash GitHub	✅	❌
Graylog	Graylog	Graylog Docs	✅	❌
IBM	QRadar	IBM App Exchange	✅	❌
Splunk	Splunk	SplunkBase	✅	❌
SumoLogic	Cloud SIEM	SumoLogic Docs	✅	❌

XDR

Company	Product	Link	Subscription API Support	Community API Support
Hunters	Hunters XDR	Hunters Integrations	✅	✅

SOAR

Company	Product	Link	Subscription API Support	Community API Support
DFLabs	IncMan	IncMan Integrations List	✅	❌
Fortinet	FortiSOAR	FortiSOAR Connector	✅	✅
IBM	Resilient	IBM App Exchange	✅	❌
LogicHub	SOAR+	LogicHub Integrations	✅	✅
Microsoft	Azure Sentinel	Sentinel GitHub	✅	✅
Palo Alto	XSOAR (formerly Demisto)	Cortex XSOAR Marketplace	✅	✅
Rapid7	Insight Connect	Extension Library	✅	✅
Siemplify	Siemplify	Siemplify Marketplace	✅	✅
Splunk	SOAR (formerly Phantom)	SplunkBase Playbook Downloads	✅	✅
StackStorm	StackStorm	StackStorm Exchange	✅	❌
Swimlane	Swimlane	Swimlane Apphub	✅	✅
Tines	SOAR Platform	Tines Story Library	✅	✅
Torq	Torq	Torq Integrations Docs	✅	❌
Shuffle	Shuffle SOAR	Shuffle Greynoise API	✅	✅

TIP

Company	Product	Link	Subscription API Support	Community API Support
Anomali	ThreatStream Enrichment	Anomali Marketplace	✅	✅
Cyware	CTIX	Cyware	✅	❌
EclecticIQ	EclecticIQ Platform	EclecticIQ Integrations	✅	❌
Recorded Future	SIP	Recorded Future Integrations	✅	❌
ThreatConnect	TIP	ThreatConnect Marketplace	✅	❌
ThreatQ	TIP	ThreatQ MarketPlace	✅	✅ Enrichment Only

OSINT

Company	Product	Link	Subscription API Support	Community API Support
MISP	MISP	MISP Github	✅	✅
Spiderfoot	Spiderfoot	Spiderfoot Github	✅	❌
Harpoon	CLI Tool	Harpoon Github	✅	✅
pOSINT	pOSINT	pOSINT Github	✅	❌
OpenCTI	Connector	OpenCTI Github	✅	❌

Analyst Tools

Company	Product	Link	Subscription API Support	Community API Support
Polarity	Polarity	Polarity GitHub	✅	✅
Sputnik	Browser Extension	Sputnik GitHub	✅	❌
The Hive	Cortex Analyzer	TheHive Github	✅	❌
Gigasheet	Gigasheet	Gigasheet	✅	❌
Maltego	Maltego	Transform Hub	✅	✅
Vertex	Synapse	Synapse Power-Ups	✅	✅

Other Community Contributed Integrations

Author	Product	Link	Subscription API Support	Community API Support
Cowrie	Cowrie	Cowrie GitHub	❌	✅
CyberGordon	CyberGordon	CyberGordon	❌	✅
AndrewPla	GreyNoisePS	GreyNoisePS GitHub	✅	✅
hrbbrmstr	GreyWatch	GreyWatch GitHub	❌	✅
IntelOwl	IntelOwl	IntelOwl GitHub	✅	✅
matamorphosis	Scrummage	Scrummage GitHub	❌	✅
HurricaneLabs	Machinae	HL Github	❌	✅
Sage	Canary-GreyNoise-Community-Threat-Intel-Report via Thinkst	Thinkst Canary GH	❌	✅
Sage	Canary-GreyNoise-Enterprise-Threat-Intel-Report via Thinkst	Thinkst Canary GH	✅	❌
Ninoseki	Mitaka	Ninoseki Github	✅	✅
ThreatDudes	GreyNoise Discord Alerts	ThreatDudes Github	✅	❌
BackChannelInc	GreyNoise Cloudflare Worker	Backchannelinc Github	❌	✅