What’s New: Aligned Access, Instant Insights, and Faster Response
Mendel 4.5 makes it easier for you and your team to manage access, see what matters, and act faster. It introduces a redesigned access system that aligns with current standards among company identity policies, and dashboards that transform your network data into immediate, actionable insights for making faster decisions. Real-time alerts delivery help your teams gain stronger control over your operations and respond more quickly to security events.
User Access Control That Fits Your Infrastructure
GREYCORTEX Mendel 4.5 introduces native support for identity providers like Active Directory, enabling you to enjoy seamless onboarding, granular role-based access, and secure authentication workflows. Whether managing access across departments or deploying Mendel at scale, user management now lets you align with your organization’s structure and policies.
Central Access Management
This latest version supports centralized management across multiple appliances. Access policies can be applied consistently, even in complex environments, without adding extra workload for your administrators.
Role-Based Permission
Management
Permissions are assigned based on organizational roles, making it easier to align access with team responsibilities. All changes are tracked, ensuring you have full auditability and historical traceability for security and compliance.
Identity Integration with SSO and MFA Support
Mendel can now connect directly to multiple domain controllers and external authenticators, allowing departments or roles to use separate identity sources under a single access control model and multifactor authentication.
High Availability for Critical Environments
High availability enables multiple Mendel units to operate in sync, ensuring that settings, detection logic, and collected data are preserved. When the primary system goes offline, the secondary system continues operations seamlessly. This approach reduces the risk of data loss and monitoring gaps. Your admins can choose between various deployments depending on their HA needs.
Faster Insights with Preprocessed Dashboards
Preprocessed dashboards instantly display key network metrics, like retransmissions and application response time, based on stored metadata and predefined filters. Data is calculated automatically at set intervals, eliminating query delays and reducing the load on your system. This speeds up investigations and helps you identify long-term trends, even in large-scale environments.
Extended Asset Context for Faster Incident Response
Users can now define custom fields for each host to better describe and categorize assets. This additional context is clearly displayed, fully searchable, and helps users navigate data more easily, making it simpler to assess the severity of potential incidents. Host information can be added manually or imported in bulk, allowing your teams to enrich asset context in a way that fits their workflow.
Expanded OT and Healthcare Protocol Coverage
TThe new version adds support for several new protocols: Ether-S-Bus and PROFINET Realtime (PN-IO), along with healthcare-related DICOM and HL7. A wide range of existing OT protocol parsers has also been updated to improve coverage.
Instant Event Export for SIEM
The updated event export system ensures that security events are pushed instantly to your SIEM solutions and external plugins via syslog, especially in multi-sensor deployments. Events now include clearer categorization and richer context to support prioritization and triage. This reduces alert fatigue and allows your teams to react to incidents in the same minute they occur.
Additional Mendel 4.5 Updates
Backup and Recovery Options
Flexible backup options to HCP, AWS S3, or USB storage help you secure critical data, support compliance, and enable fast recovery when needed.
Visibility Into Kubernetes Network Activity
Mendel 4.5 enables the monitoring of east-west traffic within Kubernetes clusters, helping you detect lateral movement and internal anomalies.
New Peer Communication on Critical Hosts
A new detector identifies previously unseen peer communication, useful for spotting unauthorized activity. This is best used selectively for systems like domain controllers, DNS servers, or OT assets.
Built-In Protection Against Scanners and DDoS Traffic
To reduce noise and save system resources, Mendel groups large volumes of traffic into summarized flows and events. This improves visibility and protects you against scanning and DDoS activity by default.
Do you want to know more about new features?
Leave us a note. We will get back to you and discuss how GREYCORTEX Mendel can help secure your organization.