FAQ
Straight answers.
The questions OT teams actually ask.
What is Maigadi?
Maigadi is an OT/ICS network detection & response platform — a passive sensor that learns your network's normal and detects the novel, signature-less attacks others miss, on-premise and explainably.
How is it different from signature-based tools?
Signatures only catch attacks someone has already seen and written a rule for. Maigadi learns your network's normal — and what a healthy OT network should look like — so it catches novel and insider attacks that have no signature.
Does Maigadi require the cloud?
No. Core detection runs fully on-premise and air-gap-ready. Any multi-site management or updates are customer-controlled — Maigadi never forces your data into a vendor cloud.
Will it disrupt my OT process?
No. Maigadi is a passive sensor on a SPAN/TAP port. It injects zero packets and never sits in-line with a process — it watches, it never touches.
Which OT protocols does it support?
Modbus/TCP, S7comm, DNP3, OPC UA, and EtherNet/IP, with protocol-aware enrichment down to function codes and operations.
How does it handle false positives?
Anomaly detection lives or dies on noise. Maigadi minimises it with a stabilisation period, robust statistics, and analyst tuning — and every alert arrives with the evidence, so you can verify it fast.
Can it run completely air-gapped?
Yes. Maigadi needs no outbound connectivity for core detection, and updates can be applied via signed offline bundles.
What does Maigadi cost?
It's a per-sensor subscription designed for the mid-market — a fraction of legacy platforms. Deployments vary, so we scope and quote yours; a free proof-of-value lets you see results first.
How do I try it?
Request a free, passive proof-of-value on your own network, or see a sample report to preview what Maigadi finds.