GFI LANguard N.S.S 8.0 Review

This is a security-database’s review of the latest release of GFI’s software LANguard Network Security Scanner 8.0. It comes with a bunch of new professional features that make vulnerability mapping and patch management easier and faster.

 Introduction

We have read recently an interesting article on a security blog somewhere in this wide net-world. It said clearly that IT security officers fear the internal disgruntled (evil) users attempts to compromise vital systems more than outside attackers. This is not a new story; it is always being the case.

Maybe you have also heard in the news that many big companies suffered from a huge loss of data as well as credit cards numbers, employees’ records and other piece of sensitive information.

Amazingly, the most exploited vulnerabilities were the easiest to identify and to fix it (unpatched breaches, default or common passwords, use of unprotected storage). In other word, attackers know how to take advantage from the weaknesses related by the vulnerability laws (half-life, prevalence, persistence, focus, window of exposure and exploitation).

No matter what they say, no matter what we (security consultants, auditors, security software vendors) do; Organizations and companies do not perform enough awareness and assessment campaigns of their exposure. Not even pay attention to keep up-to-date with the latest hotfixes or overall correctly the patch management process.

One tip we personally recommend to all our customers just after an IT assessment:

“Focus on recurrent security audits sessions with a little help from a complete solution to identify, manage and fix the critical gaps and discrepancies.â€

Attached Pictures

Compliance Mandates

  • Network Discovery :

    PCI DSS 11.2, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Comments

Related Articles

Languard NSS
Network Discovery
Vulnerability Scanner