Product
>
Blocklists
Act

Blocklists

Tired of dealing with brute force attempts, web crawlers, and other scanners filling up your logs and trying to break into your infrastructure? With GreyNoise’s blocklists, you can prevent noisy scanners from hitting your perimeter, effectively shutting them out, and giving yourself time to patch when there is an emerging exploit.

Use cases

Noise reduction in your logs

My web application logs are filled with attempts from scanners and brute forcers across the internet - I want to stop them from scanning, and remove noise from my logs so I can identify targeted attacks.

Response to emerging threat

There’s a breaking vulnerability and now internet scanners are trying to exploit CVE-XYZ - can GreyNoise help me block any exploitation activity so I have time to patch?

Using Blocklists

Blocklists are supported within our Tags pages, and adding a dynamic blocklist to your firewall is simple. From our Tag Details page, choose the Automated ‘Block At Firewall’ action to generate the Blocklist URL.  Integrate it with your next-generation firewall and you are protected!

Screenshots of the Actions panel on a Tag Details page in the GreyNoise Visualizer. Actions including downloading an IP list or blocking at a firewall.

See an example and sign up to start using blocklists for free.

FAQ

How can GreyNoise help my organization stay ahead of emerging threats and security trends?
How easy is it to integrate GreyNoise with our existing security tools and workflows?
How frequently is the GreyNoise database updated, and what sources does it draw from?
What kind of training or resources are available from GreyNoise to help us get started?

Documentation guides

Tags

GreyNoise Tags is a signature-based detection method used to capture patterns and create subsets in our data. Tags cover five primary categories: Activity, Tool, Actor, Worm, and Search Engine.

Read more
Icon depicting right-facing arrow

Firewall Blocking with GreyNoise Trends

GreyNoise Trends includes the ability to access a dynamic list of IPs that can be used in the Dynamic Block List feature in many of today's firewall products.

Read more
Icon depicting right-facing arrow

Featured content

Vulnerability — Fortinet VPN Brute Force Spike

By Jacob Fisher

On December 12th, 2022 Fortinet released a PSIRT Advisory for CVE-2022-42475 noting that it had been exploited in the wild.

Read more
Icon depicting right-facing arrow

2022: A Look Back On A Year Of Mass Exploitation

By The GreyNoise Team

In today’s release of  the GreyNoise Intelligence 2022 "Year of Mass Exploits" retrospective report, we showcase four of 2022's most pernicious and pwnable vulnerabilities.

Read more
Icon depicting right-facing arrow

How GreyNoise tags get created and how to use them

By The GreyNoise Team

GreyNoise tags are described in the documentation as “a signature-based detection method used to capture patterns and create subsets in our data.”

Read more
Icon depicting right-facing arrow

Cut through the noise

Get a demoSearch for free
Products
Partners
Resources
Company
© 2024 GreyNoise, Inc. All rights reserved.
YouTube logoJoin us on Slack!Discord logoTikTok logo
Cookie Settings
We use cookies to ensure you get the best experience on our website. Learn more
Got it