GREYCORTEX Mendel 4.3

Introducing a Latest Version of GREYCORTEX Mendel

Dive into our latest enhancements designed to boost your operational efficiency, security, and data management. The new version of GREYCORTEX Mendel has significantly strengthened its capabilities in the OT environment while also bringing substantial improvements to your IT security team. Explore these cutting-edge features and see how Mendel 4.3 can help elevate your network security and operational performance.

GREYCORTEX Mendel 4.3 Features List

Real-Time OT Metrics

Gain real-time insights into the key metrics that drive your operational success. Visualize and detect your OT-application data such as pressures, temperatures, energy, PLC register values, or L7 anomalies.

Monitor critical parameters accurately across the most commonly used protocols such as:

  • Manufacturing: Modbus and SNMP 
  • Energy distribution: DNP3, IEC-61850 (SV, MMS & GOOSE) 
  • Building facility management: BACnet

Our intuitive visualization tools provide you with a holistic view of your OT environment, enabling you to identify trends, spot potential security issues, and make informed decisions.

Enhanced OT Capabilities

Strengthen your OT operations with our latest enhancements, including:

  • New OT Parsers: Support for Cisco Discovery Protocol (CDP), Link Layer Discovery Protocol (LLDP), GE-SRTP, and Mitsubishi MELSEC
  • Upgraded SNMP Parser: Expanded to version 3
  • Configurable OT Protocol Ports: User-defined variables for custom configurations
  • Specific IDS Detection Rules in OT environment: Tailored for energy distribution, industrial manufacturing and processing, facility management networks
  • Scalable Sensor Management: Manage up to 100 small sensors with a single collector

PCAP Recorder 2.0: Boosted Data Capture

Take data capture reliability and user experience to the next level with our revamped PCAP recorder. 
Key features include:

  • Enhanced Reliability: Uses database primary keys for flawless PCAP naming and cross-language and charsets compatibility
  • Innovative Tracking: LST_ flags for real-time PCAP changes for each sensor
  • Comprehensive Data Capture: Supports Ethernet type, MPLS, tunnels, protocol, and source port filtering
  • Secure and Efficient Data Operations: PCAP definitions and database interactions are seamlessly managed through specialized database functions

Enjoy UX improvements bringing optimized PCAP recording and storage management:

  • The File Rotation System: Supports both one-time pass recordings and continuous recording with FIFO-based erasing of the oldest files
  • Flexible PCAP Rotation: Rotate PCAP files across the entire storage partition, protect specific files from deletion, and choose between FIFO rotation or halting recording when the volume is full
  • Improved Resource Management: Gain information about the overall disk volume and available space and manage sources seamlessly

NetFlow Processing Improvements

Maximize your processing efficiency and reliability and data throughput with significant NetFlow improvements:

  • Efficient Resource Utilization: Shared output threads across multiple pipelines, reducing overheads
  • Memory Optimization: Reduced consumption with the optimized ParsedFlow class
  • Modular Flow Enrichment Pipeline: Enhanced deployment flexibility, easier maintenance, and the ability to scale or update components without impacting the entire system
  • Accelerated Data Processing: Improved performance and reduced CPU load
  • User-Friendly Configuration: New UI for managing NetFlow settings across multiple pipelines

Expanded API Support

Our API extensions now also provide support for:

  • Incidents: Full functionality for handling incidents
  • Custom Categories in Signatures: Assign signatures to different categories for better organization
  • Saved Views in Network Analysis: Define and retrieve saved views in network analysis through the API
  • User Activity Logs: Access detailed information about user activity in Mendel via the API

Improved User Experience

Enhance your interaction with GREYCORTEX Mendel 4.3 through various visual and usability UI improvements:

  • Visual updates to differentiate CEM from other appliances
  • Advanced tag rendering
  • Enhanced filters for the Applications data type, network interfaces, and NetFlow sources
  • Incident filters for handling false positives and Long-Term labels
  • Whisperer in the Main filter for the Applications data type

UI changes for better UX when setting up a machine include:

  • Reworked tables and filters for Policies, Subnets, and Hosts in Settings
  • Comprehensible default (system) subnet settings
  • Bulk operation functions for subnets and hosts
  • Improved import functions and comprehensible system subnet settings
  • Training on forbidden ports in subnets
  • User management by multiple administrators
  • Code visualization for Plugins in Settings

Do you want to know more about new features?

Leave us a note. We will get back to you and discuss how GREYCORTEX Mendel can help secure your organization.

Your information will be used to answer your questions. We might send you additional information from GREYCORTEX about the company, its Mendel network detection and response solution, the features of the solution, etc. In such cases, you can unsubscribe at any time.