GreyNoise captures data on IPs that scan the internet and saturate security tools with internet noise, so SOC teams can focus on threats that matter and ignore those that don’t.
First, get a GreyNoise API key
Go to https://www.greynoise.io/ and login with an existing account or sign-up for a new account
Click on your profile and select "My API Key"
Click "View API Key" to show the API key and copy it
Lastly, create a GreyNoise credential in Tines
Login to your Tines tenant
Navigate to the team that will be using the API and click "Credential"
Click "+ New Credential" and select "Text"
Input the values for the GreyNoise credential
Name: Required
Description: Optional
Value: API Key
Optional
Domains: Ensure this credential can only be used when making HTTP requests to specific domains.
Access: What other teams can also use the API
Click "Save"
For more on creating credentials in Tines click here.
You can find a selection of GreyNoise stories in the story library