Synapsa Firewall Auditor (SFA)

Check Vendor CVE against connected firewalls

Check all your running and connected devices against vendor’s CVE announcements to discover security issues instantly.

Security rulebase check against predefined list

Constantly check your security rulebase against pre-defined audit check coming from SYNAPSA security team to disclose wrongly configured security policies.

Security rulebase check against user defined list

Constantly check rulebase against user defined auditor rules.

Privileges audit and management

Real-time assurance that devices only have approved local users with correct privileges to make sure attacker cannot login without being authenticated and reported in company’s identity management system.

Check integrity of authentication sequence and servers

Real-time assurance that devices have valid authentication sequence and do not allow authentication against unauthorized or fake identity management systems.

Logging settings integrity check

Real-time assessment of logging settings to make sure any activity is properly logged.

Docker powered

The whole system is a containerized application allowing rapid deployment and easy resource management.

Event collector

Collect events from your IDS/NDR/SIEM solutions and anomaly detection devices.

Dashboard

User friendly, widget powered dashboard with option to create multiple dashboards for specific purpose or even having restricted user permissions.

Role based management

Comprehensive role based management allowing very granular control over who can do what in the system.

Event logging with notifications

Comprehensive event logging into system logs, separated by objects and severity. Platform allows users to notify external systems like SIEM or SOC via email or syslog message.

Software upgrade

Ready made script which allows software upgrade with all the necessary checks for smooth and error free Panos deployment.

Fail-over

Allow NetOps to perform firewall failover in case of emergency or any other situation even without any knowledge, by a simple click or running a CLI command. SYNAPSA makes sure that all the pre-check and post-check are fulfilled for successful failover.

Web SSH access

Allowing full SSH access into the system via web browser.

Pre-defined data feeds from SYNAPSA

We provide IP ranges for public services like AWS, Azure, Google Cloud Platform and Office 365 with their regions and purpose. You can easily include these feeds into your security policy to only allow communication to necessary targets.

Automatic data feeds

Use IP address, URLs or Domains data feeds, which are filled from external Threat Intelligence sources or from your IPS/IDS/NDR systems and include this as an external dynamic list into security policies to dynamically block recognized attackers and malicious URL or Domains.

Security Policy Match tester

Test if a specific connection is allowed by a security policy on a firewall. No need for CISO/SOC to have any kind of access to customer’s firewalls, but the match test is performed directly on customer’s device.

Threat simulation

Allowing to test a specific threat automation process or even blocking communication based on SecOps expert structured input.