Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
GreyNoise for SOAR app icon

GreyNoise for SOAR

This app provides investigative capabilities using the GreyNoise plugin and supports receiving alerts and feeds via webhook from GreyNoise

Built by
soar product badge
Latest Version 3.0.0
August 20, 2025
Compatibility
SOAR On-Prem, SOAR Cloud
Platform Version: 8.4, 8.0, 7.2, 7.1, 7.0, 6.4
Rating

0

(0)

Log in to rate this app
Support
GreyNoise for SOAR support icon
Developer Supported connector
Ranking

#23

in Reputation
This app provides investigative capabilities using the GreyNoise plugin and supports receiving alerts and feeds via webhook from GreyNoise

Supported Actions

  • test connectivity: Validate the asset configuration for connectivity using the supplied configuration
  • lookup ip: Lookup IP using GreyNoise API Quick Check Endpoint
  • ip reputation: Get full GreyNoise reputation and context for a specific IP
  • gnql query: Use the GreyNoise Query Language to run a query
  • lookup ips: Lookup IPs using GreyNoise API Multi Quick Check Endpoint (comma-separated, limit 500 per request)
  • on poll: Get details on a specific GNQL query
  • noise ip timeline: GreyNoise IP Timeline lookup for events matching a specific field
  • get cve details: Retrieve details about a specific Common Vulnerabilities and Exposures (CVE)

Categories

Reputation

Created By

SOAR Community

Source Code

GitHub(Opens new window)

Type

connector

Downloads

908

Licensing

Apache License Version 2.0(Opens new window)

Splunk Answers

Ask a question about this app listing(Opens new window)

Resources

Log in to report this app listing