Read on Twitter
Announcing GreyNoise RIOT (Rule It Out). Quickly identify logs and events generated by benign services that your network communicates with to prevent security analyst time waste and prevent false positives. RIOT is available to all users via our web interface right now.
The following are examples of the actively-expanding list of RIOT sources:
Atlassian: https://viz.greynoise.io/riot/52.41.219.63
Github: https://viz.greynoise.io/riot/18.228.52.138
Cloudflare: https://viz.greynoise.io/riot/188.114.111.252
Google DNS: https://viz.greynoise.io/riot/8.8.8.8
Auth0: https://viz.greynoise.io/riot/52.204.128.250
Office365: https://viz.greynoise.io/riot/157.55.155.46
Atlassian: https://viz.greynoise.io/riot/52.41.219.63
Github: https://viz.greynoise.io/riot/18.228.52.138
Cloudflare: https://viz.greynoise.io/riot/188.114.111.252
Google DNS: https://viz.greynoise.io/riot/8.8.8.8
Auth0: https://viz.greynoise.io/riot/52.204.128.250
Office365: https://viz.greynoise.io/riot/157.55.155.46
To use RIOT, simply enter an IP address into the GreyNoise web interface that your network or devices are communicating with in and any results are returned to you. That's it.
To join the early adopters list for the RIOT API, offline filtering, or SIEM integrations, please email us directly at [email protected]
