CogTL

The CogTL® engine: continuous consolidation and reasoning

CogTL® functions as a powerful consolidation and correlation engine, forming its core capability.

Data Ingestion and Modeling

CogTL® integrates with diverse internal sources, including third-party tools (via APIs), LDAP directories, databases, configuration or data exports, SIEMs, and asset inventories. This collected information is standardized and combined to construct a semantic graph. This graph serves as the engine's foundation, where each node represents a concrete entity — such as a person, server, account, organization, vulnerability, or control — and their explicit relationships are defined.

Visual rules and calculations

CogTL® utilizes this semantic graph to automatically assess user-defined rules that articulate security risks or compliance violations. Examples of such rules include:

- Preventing a specific vulnerability on internet-facing servers while allowing it on other IT assets

- Prohibiting the combination of highly sensitive access with an unsecure workstation for any employee

Real-Time Monitoring and Response

Any updates to the source data instantly refresh the semantic graph, triggering an automatic re-evaluation of all relevant rules. Security risks and compliance violations result in the generation of events, alerts, and control status updates, which are then used by responsible teams for assessment and accountability.

Imagine the future

An immediate reaction to the latest changes if already great, but we went a step further by enabling integrating simulation features in CogTL®, allowing to anticipate the impacts of any projected change over the whole situation, adding a lot of value to your change management workflows.

No-code platform

Integrating a source OR designing rules does not require any development on your side. Our connector and templates simplify the task, and our visual rules designer avoids the hassle of writing any code.

Artificial Intelligence

At the core of our CogTL engine lies a powerful graph inference engine, which behaves like an expert system on steroids: always up-to-date and with a permanent truth maintenance. BUT unlike a lot of today's AI engines using LLMs, every outcome is explainable, so that you can react transparently with all elements in hand.

Big data

To be able to handle millions of interconnected knowledge elements, CogTL is based on big data technologies for storage, calculation and resilience.

Event Driven

To keep knowledge up-to-date and immediately recompute the required calculations, our core system is completely event-based, which means that you can intercept every event to automatically raise alerts, archive changes, or invoke other systems.

Cloud or on-premises

No need for expensive hardware: CogTL can be deployed in the cloud for heavy calculations. For companies with high confidentiality requirements, CogTL can also be deployed on premises as a set of Docker containers, orchestrable by Kubernetes.

Our platform typically supports and interacts with all modern technologies, and much more...

Docker logo
Kubernetes logo
Hashicorp logo
MongoDB logo
MS SQL Server logo
MySQL logo
PostgreSQL logo
Oracle DB logo
Active Directory logo
OpenAPI logo
Splunk logo
Azure logo
ServiceNow logo
CrowdStrike logo
KeyCloak logo
Qualys logo

A quick presentation is worth thousand words

Don't try to read between the lines or compare it with an existing product - our approach is completely new and slightly different. Contact us to see our products in action!

Contact us!