Cal Poly Pomona

    Enterprise Computing      

 

Cal Poly Pomona                        Phone: (909) 869-7659

3801 West Temple Avenue      Submitted By: Daniel Formel

Pomona, California 91768   

                                                     

Title V Project

GFI LANguard v3.2

 

I.     Abstract

This report includes an overview of the features provided by GFI’s LANguard Network Security Scanner and Security Event Log Monitor.

 

II. Network Security Scanner

 

Overview

GFI LANguard Network Security Scanner (N.S.S.) checks your network for all potential methods that a hacker might use to attack your network. By analyzing the operating system and the applications running on your network, GFI LANguard N.S.S. identifies possible security holes.

 

GFI LANguard N.S.S. also provides information such as service pack level of the machine, missing security patches, open shares, open ports, services/applications active on the computer, key registry entries, weak passwords, and users and groups. It also includes a patch management feature to push out patches to machines on your network.

 

 

Use GFI LANguard N.S.S. to:

·   Check service pack levels of target machines

·   Check for missing security patches of operating system or applications

·   Remotely install security patches and service packs network-wide

·   Check for security alerts/vulnerabilities

·   Detect unnecessary shares

·   Detect unnecessary open ports

·   Detect new security holes using scheduled scan comparisons

·   Check for unused user accounts on workstations

·   Check password policy and strength

·   Check if auditing is switched on

·   Make an inventory of your network

·   Detect potential Trojans installed on users’ workstations

·   Find out if the OS is advertising too much information.

 

Evaluation

GFI LANguard N.S.S will scan your network and provide plenty of useful information to help you assess the integrity of the machines on your network. It provided information such as a list of user accounts and for each account, how long it has been active, the number of logons, and the password age. Other useful information included the machines’ password policy, open ports, and missing patches.

 

Unfortunately after testing this product some information was incorrect or incomplete. It did not show every open port, nor did it accurately identify all missing patches. It also did not provide a list of vulnerabilities or security holes on the system. Applications such as Nessus and Nmap are better suited for this. In addition it did not show a complete list of user accounts, and provided incorrect information on the number of logons per user account.

 

Pricing

Scanning and security alerts are freeware. Reporting, comparison and automatic service pack and patch deployment features are limited to a 30-day trial for up to 25 machines.

 

 

 

Price

 

 

Price

up to 50 IPs

LANSS50

$ 249

up to 250 IPs

LANSS250

$ 450

up to 100 IPs

LANSS100

$ 349

unlimited IPs*

LANSSUNL

$ 695

 

Download a trial version here