The platform

Six primitives.One unified surface.

Every capability is built on the same data model: devices, endpoints, paths, policies, changes, and snapshots, all queryable through one API.

Discovery

See every endpoint, even the ones nobody told you about

SAMURAI correlates MAC, IP, ARP, DHCP snooping, CDP/LLDP neighbors, 802.1X sessions, and APIC fabric hosts into one unified endpoint table with OUI vendor lookup. No CMDB required.

  • Multi-source correlation (MAC, ARP, DHCP, CDP/LLDP, 802.1X, APIC)
  • OUI vendor identification from a 39K-entry IEEE database
  • Field-scoped search with subnet matching
Unified endpoint and access topology view
Analysis

Trace any traffic path, across any vendor, with ACL evaluation

Enter a 5-tuple (source, destination, protocol, ports) and SAMURAI traces the packet hop by hop across routers, switches, and firewalls. Every ACL along the path is evaluated. Forward and reverse paths are traced automatically.

  • Forward and reverse path tracing
  • ACL evaluation with wildcard masks and port ranges
  • Works across IOS, NX-OS, IOS-XR, PAN-OS, and FTD
Router IPSec and routing path analysis
Policies

Read firewall policy the way the firewall reads it

Resolve every rule with its real objects: services, address groups, and nested members flattened at sync time. Search the full ruleset with field-scoped, CIDR-aware operators across Palo Alto, Fortinet, and FMC.

  • Service and address references resolved to literal ports and CIDRs
  • Recursive group resolution with cycle protection
  • Implicit-AND search with negation and quoted phrases
Palo Alto security policy table
Monitoring

Catch every meaningful change. Ignore the noise.

Every sync compares real device data against the previous snapshot, not audit logs. Volatile fields are filtered automatically, so only meaningful changes are stored, attributed to who made them.

  • Smart deduplication, no duplicate snapshots
  • Side-by-side diff viewer for any two snapshots
  • Telegram and email alerts on configuration drift
Change timeline with attributed diffs
APIC tenants and contracts topology
Topology

Every vendor on one map, joined by the data, not by hand

Cisco ACI fabrics, FMC and NDO, Palo Alto, Fortinet, VMware, routers, and switches sit in one self-hosted surface. Connections are auto-discovered from neighbor and routing data, so the picture stays honest as the network moves.

And the day-to-day tooling that keeps ops honest.

Compliance

Automated compliance auditing

Fleet-wide checks with remediation tracking, waivers, and exportable reports per framework.

Alerting

Telegram, email, and in-app alerts

Instant notifications on config drift, sync failures, and state changes across every channel.

Export

Multi-format data export

Export any dataset as CSV, XLSX, HTML, or PDF with search filters applied. One click from any panel.

Access control

RBAC with LDAP integration

Granular permission-based roles with LDAP group mapping, custom roles, and per-user scoping.

One surface for the whole network.

Self-hosted, air-gap friendly, read-only. See it run against your own fleet.

Request a demoRead the docs