Terms of service

GreyNOC Terms of Service

Last Updated: June 2, 2026

These Terms of Service (“Terms”) govern your access to and use of the GreyNOC website, products, downloads, software, training materials, consulting services, Android testing programs, and related content, tools, reports, communications, and services offered by GreyNOC (“GreyNOC,” “we,” “us,” or “our”).

By accessing our website, purchasing a product or service, downloading a tool, joining a tester program, using a GreyNOC application, or communicating with us about services, you agree to these Terms. If you do not agree, do not use our website, products, downloads, tools, or services.

1. What GreyNOC Provides

GreyNOC provides cybersecurity, software, website, training, and technical services, including but not limited to:

Pentesting, security reviews, OSINT research, hardening guidance, workflow tooling, internal software, website builds, training labs, public downloads, security utilities, Android applications, beta tester programs, GreyNET network design tools, and related reports or documentation.

Some services are free. Some are paid. Some are experimental, pre-release, educational, or provided for testing only.

2. Cybersecurity Authorization Requirement

You may only use GreyNOC services, tools, reports, training, or software on systems, accounts, networks, data, devices, applications, websites, or environments that you own or are legally authorized to test, inspect, monitor, scan, analyze, or review.

You agree not to use GreyNOC materials, tools, downloads, reports, training, or services to attack, exploit, disrupt, access, monitor, scan, enumerate, bypass, damage, harass, impersonate, or interfere with any third-party system, person, organization, device, account, network, or service without written authorization.

For any penetration test, OSINT engagement, security assessment, hardening review, or technical investigation, you must provide accurate scope, authorization, and contact information. GreyNOC may refuse, pause, or terminate work if scope, ownership, permission, identity, or legality is unclear.

3. Rules of Engagement for Security Work

Security testing, pentesting, OSINT, reconnaissance, hardening review, or related work will be limited to the agreed scope. Unless expressly approved in writing, GreyNOC will not perform destructive testing, denial-of-service activity, malware deployment, credential theft, persistence, evasion, social engineering, physical intrusion, or actions intended to damage systems or data.

You are responsible for ensuring that any system submitted for testing is properly backed up, authorized, monitored, and prepared for testing. You are responsible for notifying internal teams, vendors, hosting providers, legal departments, and other stakeholders when required.

GreyNOC may require a separate written agreement, statement of work, authorization letter, or rules-of-engagement document before beginning certain security services.

4. OSINT and Public-Source Research

GreyNOC may perform open-source intelligence research using public, commercially available, customer-provided, or lawfully accessible sources. OSINT findings are based on available information at the time of review and may be incomplete, outdated, incorrect, or later changed by third parties.

You agree not to request OSINT work for stalking, harassment, doxxing, intimidation, discrimination, unlawful surveillance, personal revenge, or any improper purpose.

5. Software, Downloads, and GitHub Repositories

GreyNOC may provide public GitHub repositories, downloads, scripts, tools, guides, demos, training labs, or software utilities. Unless a separate license says otherwise, your use of each repository or software package is governed by the license included with that specific repository, download, or product.

Public repositories and downloads may be experimental, incomplete, educational, local-first, defensive, or demonstration-focused. They are provided without any guarantee that they will work in your environment, meet your needs, be secure, be error-free, or remain available.

You are responsible for reviewing code, dependencies, permissions, configuration, and operational impact before running any GreyNOC tool.

6. GreyNET and Network Design Tools

GreyNET and related design tools are provided for network planning, modeling, documentation, training, visualization, and defensive review. Any generated diagrams, vulnerability grades, reports, cost estimates, link budgets, or AI-assisted outputs are informational only.

GreyNOC does not guarantee that a GreyNET design, vulnerability report, link budget, export, AI-generated diagram, or recommendation is complete, accurate, compliant, secure, production-ready, or suitable for life-safety, aerospace, military, medical, financial, critical infrastructure, or other high-risk use without independent professional review.

7. AI Features and Bring-Your-Own-Key Use

Some GreyNOC tools may allow you to connect third-party AI services using your own API key. You are responsible for your own API keys, provider accounts, provider terms, billing, rate limits, data handling, and any content sent to or received from third-party AI providers.

GreyNOC does not control third-party AI providers and is not responsible for their outputs, downtime, pricing, model behavior, privacy practices, security, or data retention policies.

AI-generated content may be inaccurate, incomplete, unsafe, or unsuitable for your use. You must review, test, and validate AI-generated outputs before relying on them.

8. Android Apps and Beta Testing

GreyNOC may offer Android applications, pre-release builds, tester programs, or experimental mobile tools. Beta and pre-release software may contain bugs, incomplete features, crashes, inaccurate results, performance issues, permission issues, or security flaws.

By joining a tester program, you agree to provide truthful, safe, and useful feedback. Do not submit passwords, private messages, financial data, private images, precise locations, secrets, or confidential third-party information unless specifically requested through a secure process.

You may stop participating in testing at any time. GreyNOC may remove testers or close testing access at any time.

9. Training, Labs, and Educational Content

GreyNOC training materials, labs, assessments, simulations, certificates, reports, and examples are for education, defensive skill-building, awareness, and lawful testing only.

Completion certificates, scores, badges, or training records do not represent professional certification, licensing, employment approval, legal authorization, or proof of real-world competency unless expressly stated in writing.

10. Products, Purchases, Payments, and Refunds

Products and services may be sold through our website or third-party platforms such as Shopify or payment processors. Prices, availability, descriptions, discounts, and features may change at any time.

Payment must be completed before delivery unless otherwise agreed in writing. For custom services, deposits, milestones, refunds, cancellations, revisions, timelines, deliverables, and support terms may be governed by a separate quote, invoice, statement of work, or written agreement.

Digital products, downloads, reports, custom work, consulting, security services, and completed services may be non-refundable unless otherwise required by law or stated in writing.

11. Website Builds and Custom Software

For website builds, custom software, dashboards, internal tools, or other development work, the specific scope, deliverables, ownership, payment schedule, revision limits, hosting responsibilities, maintenance, and support obligations should be defined in a separate written agreement.

Unless otherwise agreed in writing, GreyNOC may reuse general knowledge, techniques, templates, code patterns, non-client-specific tooling, and internal methods developed during work.

You are responsible for providing accurate content, permissions, credentials, brand assets, hosting access, third-party licenses, domain access, and approvals needed for your project.

12. Client Content and Submitted Information

You are responsible for any information, files, screenshots, code, credentials, logs, records, domains, systems, data, feedback, or content you provide to GreyNOC.

You represent that you have the right to provide that information and that doing so does not violate any law, contract, privacy right, security obligation, intellectual property right, or third-party right.

Do not send sensitive information unless necessary for the engagement and only through an appropriate secure channel.

13. Confidentiality

GreyNOC will make reasonable efforts to protect confidential client information provided during paid engagements. However, unless a separate written confidentiality agreement or NDA is signed, information submitted through general website forms, email, tester forms, or informal communication may not be treated as confidential to the fullest extent possible.

For sensitive security work, request a written NDA or separate engagement agreement before sending confidential data.

14. Acceptable Use

You agree not to use GreyNOC services, tools, software, reports, downloads, or communications to:

  1. Break the law or violate third-party rights.
  2. Access, scan, test, monitor, or attack systems without authorization.
  3. Create, improve, deploy, or conceal malware.
  4. Steal credentials, tokens, API keys, private data, or secrets.
  5. Conduct phishing, fraud, impersonation, stalking, harassment, doxxing, or unlawful surveillance.
  6. Bypass security controls, rate limits, authentication, licensing, or access restrictions.
  7. Disrupt, overload, damage, or interfere with networks, services, accounts, devices, or infrastructure.
  8. Misrepresent GreyNOC findings, reports, certifications, tools, or services.
  9. Resell, repackage, or claim ownership of GreyNOC materials without permission.
  10. Submit false, misleading, illegal, harmful, or unauthorized information.

GreyNOC may refuse service, remove access, cancel orders, terminate accounts, decline tester participation, or report misuse when appropriate.

15. No Guaranteed Security

Cybersecurity work reduces risk but does not eliminate risk. No assessment, scan, test, tool, AI output, training lab, recommendation, website build, report, or hardening review can guarantee that a system is secure, compliant, breach-proof, error-free, or protected from all threats.

Security findings are based on available information, agreed scope, testing conditions, timing, access, and methodology. New vulnerabilities, misconfigurations, threats, or weaknesses may appear after delivery.

16. No Professional Legal, Financial, Medical, or Compliance Advice

GreyNOC may provide technical, security, operational, or educational information. Unless expressly stated in a separate written agreement, GreyNOC does not provide legal, financial, medical, insurance, regulatory, or compliance advice.

You should consult qualified professionals for legal, regulatory, financial, insurance, privacy, compliance, or industry-specific decisions.

17. Third-Party Services and Links

GreyNOC may link to or integrate with third-party services, including GitHub, Shopify, Google Forms, Google Play, OpenStreetMap, Google Maps, OpenAI, Anthropic, payment processors, hosting providers, APIs, data feeds, or other external platforms.

Third-party services are governed by their own terms, privacy policies, security practices, pricing, and availability. GreyNOC is not responsible for third-party services, content, failures, data handling, outages, billing, or policy changes.

18. Intellectual Property

GreyNOC owns or licenses the GreyNOC name, logos, website content, product names, designs, software, documentation, reports, training materials, workflows, text, visuals, and related intellectual property, except where otherwise stated.

You may not copy, modify, distribute, sell, publish, scrape, reverse engineer, or create derivative works from GreyNOC content or software except as allowed by an applicable open-source license, product license, written agreement, or law.

19. Feedback

If you send GreyNOC feedback, suggestions, bug reports, feature requests, comments, or ideas, you grant GreyNOC permission to use them without restriction or compensation, unless otherwise agreed in writing.

20. Account, Access, and Security Responsibilities

If any GreyNOC service requires an account, login, API key, tester access, download link, or private communication channel, you are responsible for protecting your access credentials and devices.

You must notify GreyNOC promptly if you believe your access, account, API key, tester link, or communication with GreyNOC has been compromised.

21. Availability and Changes

GreyNOC may change, suspend, remove, discontinue, rename, update, or limit any website feature, product, download, GitHub repository, service, tester program, training material, or software at any time.

We do not guarantee uninterrupted availability, backward compatibility, continued support, or permanent access to any free or paid resource unless stated in a separate written agreement.

22. Disclaimers

To the maximum extent permitted by law, GreyNOC provides the website, products, services, reports, tools, software, downloads, training, beta builds, and content “as is” and “as available.”

GreyNOC disclaims all warranties, express or implied, including warranties of merchantability, fitness for a particular purpose, title, accuracy, availability, security, non-infringement, and error-free operation.

23. Limitation of Liability

To the maximum extent permitted by law, GreyNOC will not be liable for indirect, incidental, special, consequential, exemplary, punitive, or lost-profit damages, including loss of data, business interruption, loss of revenue, reputational harm, security incidents, third-party claims, system downtime, or cost of substitute services.

To the maximum extent permitted by law, GreyNOC’s total liability for any claim related to the website, products, services, tools, downloads, software, training, reports, or these Terms will not exceed the amount you paid GreyNOC for the specific product or service giving rise to the claim during the three months before the claim arose, or $100 if no payment was made.

24. Indemnification

You agree to defend, indemnify, and hold harmless GreyNOC from any claims, damages, liabilities, losses, costs, and expenses, including reasonable attorney fees, arising from your misuse of the website, products, services, software, downloads, reports, tools, training, tester programs, or your violation of these Terms, law, third-party rights, or authorization requirements.

25. Termination

GreyNOC may suspend or terminate your access to any website feature, service, product, tester program, download, or communication if we believe you violated these Terms, created legal or security risk, misused GreyNOC materials, failed to pay amounts due, or acted in a way that harms GreyNOC, customers, users, systems, or third parties.

Sections that by their nature should survive termination will survive, including intellectual property, confidentiality, disclaimers, limitation of liability, indemnification, payment obligations, and dispute provisions.

26. Governing Law

These Terms are governed by the laws of the State of Michigan, without regard to conflict-of-law principles, unless applicable law requires otherwise.

Any dispute arising from these Terms or GreyNOC services will be handled in the state or federal courts located in Michigan, unless a separate written agreement states otherwise or applicable law requires a different venue.

27. Changes to These Terms

GreyNOC may update these Terms from time to time. Updated Terms will be posted on the website with a revised “Last Updated” date. Continued use of the website, products, downloads, tools, tester programs, or services after changes are posted means you accept the updated Terms.

28. Contact

Questions about these Terms may be sent to:

GreyNOC
CustomerService@GreyNOC.com