Programmable Packet Engine

The Foundation for Event Driven Network Analytics  

PPE

The Programmable Packet Engine (PPE), is advanced software sensor technology that dynamically processes unstructured network traffic into structured streaming metadata, in real-time. The increasing complexity of infrastructure (Hybrid IT & Cloud) and operating modalities (microservices, SDN, serverless, and perimeter-less networks) means that ubiquitous, continuous, real-time visibility of network communications is more important than ever. This supports the real-time, continuous, visibility and management of network protocols (across layers 2-7) for event-driven decisioning capabilities.

SecOps and NetOps teams gain increased visibility in to network traffic with the PPE's in-memory processing to transcode a range of protocols (HTTP, TLS, DNS, GTP, etc.) along with processing engines (REGEX and Entropy) that illuminate specific traffic of interest. Programmatically search for, extract, and deliver detailed metadata in real-time, providing an unmatched level of situational awareness, traffic visibility, and control of network traffic. 

The PPE is a containerized P4 software application that can be deployed in a cloud/virtual environment or delivered as a physical appliance. 

MantisNet PPE software is highly scalable, performant and optimized for today's networks. The PPE continuously monitors, interrogates, decodes, extracts and converts unstructured network data into high resolution metadata (open-standard, key value pairs) for improved situational awareness and real-time access to actionable intelligence. 

Apply the value of extracted and structured network protocol metadata for many uses in cybersecurity and network monitoring needs:

  • Application and Network Performance Monitoring (APM and NPM)
  • Continuous Monitoring, traffic analysis, classification and event correlation
  • Data plane engineering
  • De-encapsulation / Re-encapsulation of packets
  • Detect command & control (C2) servers, rogue/hijacked servers, DDoS and MITM attacks
  • Detect unauthorized access (ATO), and surreptitious file transfers (DLP)
  • GRC compliance monitoring
  • Next Generation Firewalls (NGF)
  • Network Detection and Response (NDR)
  • Network Monitoring and Lawful Intercept
  • Network Security Monitoring
  • Network Telemetry Generation
  • Network Traffic Analysis (NTA)
  • Policy Control & Charging (PCC)
  • Quality of Experience (QoE)
  • Security Analytics
  • Security and Anomaly Detection
  • Security Incident and Event Monitoring (SIEM)
  • Threat Hunting
  • Understand the cryptographic health of systems
  • User and Entity Behavioral Analytics (UEBA) 

 

The MantisNet Difference

  • Intelligent - continuously transforms unstructured network data to structured metadata by extracting, key value-pairs, providing detailed real-time visibility into the network traffic
  • Dynamic - parse any protocol or any payload type (L2 - L7) and use regular expression (regex) to identify and isolate traffic of interest
  • Scalable - P4 software running in-memory is capable of processing network traffic at wire-speed, regardless of the network speed
  • Efficient - produces serialized metadata (filtered/un-filtered) in JSON or any other data formats for use by follow-on stream processing, analytics and network monitoring or management systems. Specifically processes the traffic of interest - significantly reducing the amount of data needed to be transported, analyzed, stored or processed
  • Actionable - in addition to increased visibility use the interactive remediation capabilities and take action on the in-transit network traffic to process/filter, shunt or terminate in real time
  • Flexible -deploy anywhere visibility and analysis are needed using on-premise appliances or in  cloud/virtualized environments using Docker, Kubernetes or other container technologies

Programmable Packet Engine - SSL Demo 

Account Takeover (ATO) Fraud and Credential Stuffing are some of the fastest growing threats. View our Demo to find out how to Identify and Take Action Against ATO Fraud.

REQUEST A DEMO

 

Simplified Deployment and Pricing

MantisNet licensing is sized and scaled to meet the current and future demands of the enterprise:

  • Licensing is based on the specific cloud instance, and the type and number of total sensors required
  • Pricing scales with performance and processing demands.
  • Performance is based on the specific instance and availability of resources (network bandwidth, number of CPU cores/memory) allocated as well as the resource demands of the traffic of interest and the licensed protocol transcoders.
  • Provides predictable lifecycle upgrades by offering support for up to two major software releases*

Contact us to discuss deployment and pricing options.

 



MantisNet delivers unparalleled capabilities to monitor, manage and secure network traffic.

Take the next step with MantisNet solutions to bring real-time network intelligence and decisioning to your organization.
Contact us for demos, discussions or to answer any questions.