Enhanced Security Operations Center

Whether you are an in-house SOC team or a service provider, make GREYCORTEX Mendel an essential component of your SOC ecosystem. Mendel empowers your SOC teams to harden the network by ensuring they identify any vulnerabilities in your network promptly and fix them on time.

With its advanced network analytics, Mendel also enhances SOC service providers’ capabilities by empowering them to map the network effectively. Furthermore, Mendel’s robust behavior-based detection and threat intelligence bolster the security infrastructure for both in-house teams and service providers. Its seamless integration with various security tools facilitates SOC teams to respond swiftly to threats and enhance the overall security posture.

Mendel enables you to:

  • - Harness powerful network analytics to uncover any information about your network.
  • - Identify IoT and OT devices and complement EDRs.
  • - Hide Mendel within your infrastructure, making it almost undetectable.
  • - Integrate Mendel seamlessly with external threat intelligence.
  • - Assist SOC teams in threat detection by analyzing vast amounts of data.
  • - Retain historical data for six months or longer.
  • - Integrate our solution with SIEM, SOAR, EDR, firewalls, and JIRA.

Elevate Your Services with GREYCORTEX Mendel

No More Unmonitored Devices:
IoT (incl. IIoT, IoMT), OT

Mendel allows you to complement your EDR solutions by providing you visibility into vulnerable IoT and OT devices, which often lack built-in security measures. This strengthens your network’s defenses, ensuring no device remains hidden from view.

Threat Intelligence Integration

Your SOC teams can integrate their own knowledge base into Mendel, built on their experience or preferred external threat intelligence sources. Now your team can leverage seamless integration with any external databases via our REST API.

Undetectable to Attackers

Mendel’s covert deployment options hide its presence from attackers, ensuring you can achieve uninterrupted threat detection. Even if your other security tools are disabled, Mendel guarantees that you still have full visibility of your customers’ networks and can identify any hacker activities.

See Mendel in action

Sign up for our next webinar!

Heightened Threat Detection

Mendel’s goal is to assist your SOC teams in simplifying, expediting, and improving their threat-hunting capabilities. By analyzing vast amounts of data, Mendel learns your network, meaning you can identify both malicious behavioral patterns and any behavioral changes and anomalies. This enables you to detect sophisticated and newly emerging threats swiftly and effectively.

Moreover, for cases where historical network communication analysis is required, Mendel retains your data for six months or longer, based on your specific requirements. It enables you to easily search for known indicators of compromise during security investigations.

“We value Mendel’s automatically generated models, facilitating the seamless detection of network traffic anomalies. Its smooth interaction with other systems, such as EDR, enhances the context of alerts, making it a valuable asset in our daily work.”

An Integral Part of Your Security Ecosystem

GREYCORTEX Mendel seamlessly integrates with your various tools,
serving you as both a reliable source of information and a data aggregator.

SIEM

Mendel serves as an information source for your SIEM, functioning as an additional security layer that identifies advanced threats and anomalies that could potentially go unnoticed within your SIEM systems. Furthermore, Mendel comes equipped with numerous pre-configured settings designed to help you detect any network changes, such as newly identified devices, new DNS, web or email servers, alterations to user hostnames, and inactive services. This helps you avoid the need to configure these settings manually in your SIEM systems, which can be a highly time-consuming process. Additionally, Mendel is able to send automatic alerts to your SIEM solutions.

Seamless integration via standard exports and API

SOAR

GREYCORTEX provides you with an integration module that fosters a seamless connection between Mendel and the SOAR platform. This module enables SOAR to interpret data as well as request additional information from Mendel.

EDR

Mendel integrates with your Endpoint Detection and Response tools to enrich host information and compare network activity with processes and OS-level actions, enabling it to issue isolation commands.
 

Firewall

Integration with firewalls allows Mendel to execute commands through them, enhancing its capability to respond to security threats effectively and enabling users to block specific communication directly from the Mendel UI. 

Network Access Control

Integration with NAC tools allows to send infected or potentially compromised devices to VLAN quarantine, private VLAN, or disconnecting them from the network. This reaction can be initiated manually or automatically based on predefined rules.

Incident Management

For efficient incident management and investigation, you can integrate Mendel with your ticketing systems, such as JIRA, helping you maintain and facilitate cohesive teamwork within your organization.

Experience Mendel’s Power For Yourself Today!

See how Mendel’s enhanced network analytics and robust threat detection can 
empower your SOC teams and service providers to elevate your security measures 
and respond swiftly to threats.