Operational Monitoring
Business success relies heavily on the seamless operation of networks, services, and applications, which streamline operations and improve employee productivity. Therefore, the top priority for your NetOps teams is to proactively ensure the smooth performance of both your network and applications, enabling you to prevent problems or promptly address them.
Ensure Business Continuity with GREYCORTEX Mendel
GREYCORTEX Mendel empowers your NetOps teams to perform rapid health checks of your network, applications and services. With Mendel, your teams can quickly identify the root causes of performance issues, validate your security policies, and receive immediate alerts for any critical problems. This proactive approach ensures you can promptly address potential disruptions, minimizing downtime and maintaining operational efficiency.
With Mendel, you can:
- - Gain visibility into your network’s composition, including IT, IoT, and
OT devices. - - Streamline host categorization with automatic tagging.
- - Be informed of any critical network alterations.
- - Detect misconfiguration issues swiftly.
- - Monitor key performance metrics and receive promptly alert of any abnormalities.
- - Validate your security policies, including segmentation.
Full Asset Discovery and Inventory
Don’t just guess what’s in your network,
verify it easily!
The larger your business is, the larger your network becomes, introducing various unknowns such as devices deployed without your NetOps team’s awareness, forgotten services, and lost devices. GREYCORTEX Mendel brings you order to the potentially chaotic world of networks by providing you with a complete picture of your network. Whether it’s an IT, IoT, or OT device — such as printers, IP cameras, IP phones, HVAC systems, and more — Mendel enables you to detect and recognize all communicating devices.
Comprehensive network inventory
Mendel conducts a thorough inventory of your network, capturing information on hosts, MAC addresses, services, administrator account accesses, and more. Moreover, it provides you with access to essential information, like hostnames, users, tags, operating systems, and more, while visualizing connections among devices, subnetworks, and users. Mendel allows you to analyze data from Layer 2 (Ethernet) over Layer 3 (TCP/IP) to Layer 7 (application protocols).
Automated tagging
Mendel’s automatic tagging assists you in identifying and categorizing hosts within your network. Tags indicate the running services on the host and whether they are local (server) or remote (client). They can help you identify services such as DHCP, DNS, HTTP, HTTPS, SSH, SMB, and many more. Additionally, your network analysts can create their own tags and define rules for how these tags should be assigned.
Real-time network change monitoring
Mendel also actively monitors and alerts you to any changes in your network, such as the addition of new hosts, MAC addresses, devices, services, administrator accounts, or instances where a service, application, or host has stopped responding or is overloaded.
Root Cause Analysis and Troubleshooting
Protect your network health
There are various reasons for configuration errors, including human error, network expansion, software bugs, and changes in your business processes. These errors can hinder your network’s performance, slow application response, and create vulnerabilities, potentially exposing your network to external threats.
GREYCORTEX Mendel enables you to effectively identify any misconfiguration issues within a network, such as:
- Unavailable services and devices
- Forbidden services not compliant with your company’s security policies
- Forgotten services that were previously in use but are no longer needed, yet still operational
- Users attempting to access services that are no longer operational
- Weaknesses in your firewall and LAN structures
- Weak or absent encryption
- Use of outdated Java
- Subnets with overlapping IP address ranges
- Outdated solution scans causing congestion and false alerts
- Plain text authentication vulnerabilities
- Anomalous behavior, such as unusual connections
- Application misconfigurations due to network overload or issues impacting performance and user experience
- Default configurations of devices, such as public DNS settings, update requests, etc.
Network and Application Performance
Ensure business continuity with Mendel
Network communication metrics
Mendel gives you the ability to observe both inbound and outbound traffic, analyzing communication patterns to determine network and application speed, time, data transfer speed, response, jitter, latency, and other metrics. Mendel also helps you identify whether certain traffic carries Quality of Service (QoS) or Differentiated Services Code Point markings. Moreover, Mendel enables you to uncover any network issues arising from high retransmission and out-of-order packets, which may lead to communication delays, disruptions in data flow, and a less reliable overall network performance.
Network performance metrics
By having a complete historical record of network communication, your NetOps teams can identify normal and abnormal metrics for round trip time (RTT), user experience time (UET), and application response time (ART). Furthermore, your network analysts can set specific performance values for comparison with current metrics and receive notifications for all abnormal increases.
Application log analysis
In addition to processing mirrored traffic, Mendel also allows you to analyze application logs from any systems via the syslog protocol. These logs enrich the data collected from your network traffic and/or provide data from areas of the network where you cannot deploy Mendel’s sensors. Moreover, your network administrators can create rules on logs to promptly identify and address any operational problems that may arise.
“GREYCORTEX Mendel helps us to identify network, service, and application performance issues before they become serious problems, allowing us to address them promptly. It provides unique and fast visibility into our internal infrastructure and conducts continuous network audits. Mendel has also assisted us in segmenting our network, and with instant notifications, we can ensure everything is functioning
as it should.”
Internal Cybersecurity Policies
Verify your policies and validate you network segmentation
For larger networks, proper segmentation is crucial, involving the monitoring of defined policies, user privileges, and access rights. Mendel’s peer graph promptly assists you in auditing your network segmentation by visualizing who communicates with whom, where they access, and which services are used.
Custom rules and notifications
For a demilitarized zone (DMZ) or any other critical network segment requiring stringent security measures, Mendel allows you to set custom rules and notifications if a new host appears or an existing host disappears. Additionally, Mendel identifies and notifies you when a host communicates with the Internet, when it’s prohibited, or when communication occurs between segments where it’s not allowed.
Integration with software-defined networking (SDN) solutions
Integrating with software-defined networking (SDN) solutions such as Cisco ACI, Mendel allows you to obtain information about endpoint security groups (ESGs), endpoint groups (EPG), and their security policies. You can visualize the network communication of these groups and generate alerts when security rules set for these groups are violated.
Visibility into VPN communication
Additionally, Mendel provides you with complete visibility into VPN communication by monitoring admin and user activities, their access points, and communication partners within your network.
Risk Planning
Identify your critical assets and assess potential risks
Mendel assists you in identifying critical network systems and services while also reevaluating the significance of assets previously deemed critical. This enables your network analysts to strategize responses in the event of a system or service outage, enabling them to proactively address issues and mitigate the risk of costly downtimes.
Discovery of critical systems and services
Mendel helps you in discovering other systems and services that may be crucial for the uninterrupted operation of critical assets. Mendel also assists you in reevaluating your subcontractor documentation to determine its current relevance or potential outdatedness due to network changes, highlighting the need for documentation updates.
Ensure Seamless Network Operations with Mendel
With GREYCORTEX Mendel, you can quickly identify any network health issues and receive
immediate alerts for critical alterations. Proactively manage misconfigurations, monitor key
performance metrics, and validate your security policies to minimize downtime and maintain
operational efficiency.
Webinars
Analysis of Network Performance Issues
We introduce performance metrics and the TCP/IP protocol structure to measure network performance, tag applications and services, and monitor network and service outages.
Identification and Investigation of Lateral Movement Attacks
We explore best practices in identifying lateral movement, common service vulnerabilities, and attacker exploitation techniques.