Which part of our technology would you like to explore?
Security runs through everything we do which is why we implement industry leading, proven and comprehensive methodologies. Our approach to security is transparent and built to last, earning high praise from industry experts, including a notable endorsement from a prominent CISO who serves as a security advisor for both the Danish government and military.
"Woah...That's good!"
- Most CISOs
Security
When onboarding a new client, we create an entire dedicated data center in Azure.
Azure SQL Database encrypts all traffic both at rest and during transport meaning there is no unencrypted traffic anywhere between our components. However, we give you the opportunity to use your own encryption keys rather than Microsoft’s.
Flexible geographic deployment options for multinational clients
Customizable backup retention (default 7 days, extensible up to years)
Geographic backup replication options
Advanced encryption options, including client-managed keys
Security
Each year Mugato hires leaders in cyber security and asks them to have a go at our system to see if they can expose any vulnerabilities. Using different methodologies such as OWASP and NIST frameworks none of the companies that have investigated us managed to find any holes.
Penetration Test Methodologies:
Installing Mugato is a simple process that takes roughly 10 minutes and can be done in an online meeting. Mugato doesn’t come with an out of the box appliance. Instead we ask you to bring a clean virtual server created based on your trusted templates so you don’t need to verify tens of thousands of other files that might come with an out of the box solution.
"After 30 years of deploying custom solutions for enterprises, we made installation the easiest part of the process"
- Michael Frandsen, Founder and CTO @Mugato
Installation
Whether you have thousands of servers all over the world or you’re a small enterprise with 100 servers in the basement, we never deviate from our installation.
→ 4vcpu and min 8gb of memory
→ Minimum 100gb of storage
→ Running windows
→ Joining it to the domain and latest patch installed
→ Download Microsoft SQL Server Express
→ No need to install SQL Server Express before the installation meeting (Proof of Value)
→ Mugato needs no permissions before the meeting
→ No remote desktop access needed
→ We will guide you step-by-step during the meeting
Installation
Beyond the installation that takes less than 15 minutes, here's what to expect.
→ Download the Mugato setup program from our portal (link will be provided)
→ Enter provided serial number
→ Follow guided installation steps
→ Install SQL Server Express
→ Add credentials to the Mugato collectors through Windows Service Manager
→ Encryption hashes and secrets are generated
→ System services are created (collectors, sync, discovery)
→ SQL Express database is created and set up
→ Fingerprint of your connection is established
Installation
While most agent-based solutions take months or years to implement, Mugato allows you to get value 14 days after installation. Mugato’s intelligent process mining algorithms can map out most of your IT environment after running for only a couple of weeks so our clients can consolidate infrastructure, implement micro-segmentation, right-size, reduce IT costs, and de-risk operations.
Build from 25+ years of solutioning and implementing enterprise infrastructure.
→ Does not require agents
→ Runs on a server/virtual machine
→ No network access required
→ Zero touch
→ Continuous process mining
→ Isolated client databases & resource groups
→ Access to API and enriched data
→ Annual penetration tests
→ 3 layers of transport security:
SSL encryption
Fingerprint matching
Token based authentication
Runtime
Feature
Mugato
Other Systems
Agentless Discovery
✅ Zero Agents
❌ Time consuming installation and maintenance of agents
Full Asset Discovery
✅ Zero libraries. All assets being discovered, also rare and custom software
❌ Software that doesn't fit a library doesn't get recognized
Zero Touch
✅ Zero extra workload on your servers
❌ Agents take away computing power from the severs
Automated Dependency Mapping
✅ Yes, with minimum manual effort
❌ Manual effort needed
Works with Minimal Privileges
✅ Yes
❌ Due to agent based installation, account is provisioned on all servers in the infrastructure
Automated Insights & Risk Detection
✅ Yes
❌ Requires Manual Analysis
Real-Time Updates
✅ Yes
❌ Requires manual updates, often outdated
Fast Time to Value (TTV)
✅ 10 min installation and 2 weeks of process mining
❌ Months to install and static output
Plan Generator
✅ Yes, using code to sequence changes & transformation
❌ Requires manual input and meetings
Easy API Integration
✅ No-code integrations
❌ Limited or proprietary REST APIs
Mugato's intelligent process mining algorithms only collect meta information regarding your enterprises infrastructure which is why it doesn’t require high privilege accounts or access. We don't collect or process any personal or company data - and never will.
Data Collection
We don't process any personal or company confidential data at any point. The credentials that our collectors run on don’t allow them to collect any such data on most operating systems. The information gathered is basic meta data about your IT infrastructure such as:
→ file share names
→ domain names
→ cluster names
→ server features
→ networking details
→ performance metrics
Our security architecture prioritizes client safety at every level. Security is fundamental to everything we do, which is why we implement the latest & most-proven methodologies. Our transparent approach to security has earned high praise from industry experts. With complete client data isolation at its foundation, our architecture incorporates a multi-layered approach to security.
Unlike other AI tools that rely on generative approaches, Mugato uses Predictive and Causal AI powered by deterministic meta information from a clients' servers. This ensures trustworthy, fact-based results without statistical guesswork.
Since we only collect meta information and avoids both generative AI and processing of personal or company identifiable data, our solution fully complies with current and publicised data protection and AI regulations.
