SO

Cyber Ecosystem

Synapse Sonar

Dynamic internal attack-surface & dependency mapper.

Overview

Synapse Sonar builds a living map of your internal network — agentlessly, from flow logs — then overlays vulnerability data, simulates blast radius, and flags Zero-Trust segmentation drift the moment a rogue connection appears.

Features

  • Agentless topology mapping from flow-log ingestion (host + passive SPAN sensors)
  • CVE/CVSS vulnerability overlay directly on the network graph
  • Blast-radius simulation from any compromised node
  • Zero-Trust segmentation rule engine with default-deny posture
  • Rogue / Shadow IT detection

Capabilities

  • Full multi-tenant isolation on every model
  • Three-tier RBAC: read-only viewer, security analyst, tenant admin
  • AES-256-GCM encrypted integration secrets, TOTP MFA
  • Guided first-run setup wizard with invites and user administration

Benefits

  • See your real internal attack surface, not the one in the network diagram
  • Know the blast radius before an incident, not during one
  • Immediate HMAC-signed alerting into IronNode when segmentation drifts

How it links to other apps

Sonar ingests Synapse-NetscanXi's vulnerability feed to enrich its topology map, and dispatches signed webhook alerts into Synapse IronNode when a segmentation rule is violated, triggering an automated playbook.

User guide Admin guide