Win XP/2000/2003/Vista
|
| 4 IPs Network Security Scanner inc 12 months subscription - £145.85 |
|
| 8 IPs Network Security Scanner inc 12 months subscription - £190.72 |
|
| 16 IPs Network Security Scanner inc 12 months subscription - £295.45 |
|
| 32 IPs Network Security Scanner inc 12 months subscription - £412.95 |
|
| 64 IPs Network Security Scanner inc 12 months subscription - £466.94 |
|
| 128 IPs Network Security Scanner inc 12 months subscription - £609.95 |
|
| |
 |
email
sales@extralan.co.uk for more than 128 IPs or site license pricing |
 |
As an authorised GFI reseller we supply the
entire range of GFI security and messaging
add on solutions.
Contact
sales for
latest pricing |
GFI Network Security and Port Scanner Overview
Automatically detect security vulnerabilities on your
network
GFI LANguard Network Security Scanner (N.S.S.) checks your network for all
potential methods that a hacker might use to attack your network. By analyzing
the operating system and the applications running on your network, GFI LANguard
N.S.S. identifies possible security holes. In other words, it plays the devil's
advocate and alerts you to weaknesses before a hacker can find them, enabling
you to deal with these issues before a hacker can exploit them.
Provides in-depth information about all machines/devices
GFI LANguard N.S.S. scans your entire network, IP by IP, and provides
information such as service pack level of the machine, missing security patches,
open shares, open ports, services/applications active on the computer, key
registry entries, weak passwords, users and groups, and more. Scan results are
outputted to an HTML report, which can be customized/queried, enabling you to
proactively secure your network - for example, by shutting down unnecessary
ports, closing shares, installing service packs and hotfixes, etc.
Patch management
GFI LANguard N.S.S. is a complete patch management solution. After it has
scanned your network and determined missing patches and service packs - both in
the operating system (OS) and in the applications - you can use GFI LANguard
N.S.S. to deploy those service packs and patches network-wide.
Use GFI LANguard N.S.S. to
 | Check service pack levels of target machines |
| Check for missing security patches of operating system or
applications |
| Remotely install security patches and service packs
network-wide |
| Check for security alerts/vulnerabilities |
| Detect unnecessary shares |
| Detect unnecessary open ports |
| Detect new security holes using scheduled scan comparisons
|
| Check for unused user accounts on workstations |
| Check password policy and strength |
| Check if auditing is switched on |
| Make an inventory of your network |
| Detect potential Trojans installed on users’ workstations
|
| Find out if the OS is advertising too much information. |
GFI Network Security ScannerFeatures
Detect OS, service pack level & missing OS & application
patches
Installing the latest security patches is a must to keep your network secure.
GFI LANguard N.S.S. detects what service packs and security patches are
installed and identifies missing security patches and service packs. GFI
LANguard N.S.S. detects Windows and UNIX operating systems using SMB queries.
Ability to push service packs to Windows NT/2000/XP
machines*
Remotely deploy service packs to all your workstations and servers immediately
or at a scheduled time - without user intervention.
Ability to patch Windows NT/2000/XP machines
Once GFI LANguard N.S.S. has found a machine that lacks security patches, it can
push those security patches to the remote machine, either installing them
immediately or scheduling a time for them to install - all without user
intervention! (Feature only available for English Windows systems.)
Ability to patch Microsoft Applications (Office, Exchange,
ISA Server)
GFI LANguard N.S.S. also is able to patch important Microsoft applications such
as Microsoft Office, Microsoft Exchange Server, Microsoft SQL Server and
Microsoft ISA Server.
Fast TCP & UDP port scanning & identification
GFI LANguard N.S.S. includes a fast TCP/IP and UDP port-scanning engine,
allowing you to scan your network for unnecessary open ports. GFI LANguard N.S.S.
identifies well-known services (such as www/FTP/telnet/SMTP... ) and also
supports "banner grabbing", that is, it queries the port for an application
name.
GFI LANguard N.S.S. "alerts" pinpoint security issues &
recommends action
Once GFI LANguard N.S.S. has completed scanning a
computer, it generates an "Alerts" node which details key security issues and
recommends a course of action. Wherever possible, GFI LANguard N.S.S. includes
further information about the security issue or a web link to more information,
for example a BugTraq ID or a Microsoft KnowledgeBase article ID.
View screenshot
Automatically detect NEW security holes with scheduled
scan results comparisons*
GFI LANguard N.S.S. can compare scan results and identify new security holes
appearing on your network. The scheduled scan feature allows you to schedule
daily or weekly network scans, which can then be automatically compared to
previous scan results. This enables you to quickly identify changes such as
newly created shares, installed services, added users or added ports. You can
configure GFI LANguard N.S.S. to automatically email you a list of changes.
View screenshot
Finds all shares on your network
GFI LANguard N.S.S. enumerates all shares on your network, including
administrative shares (C$, D$, ADMIN$) and printer shares. Using this feature
you can:
| Check whether a user is sharing his/her whole drive with
other users |
| Prevent anonymous access to shares |
| Ensure that startup folders or similar system files are not
shared as this could allow less privileged users to execute code on target
machines. |
Find unused local users & groups
GFI LANguard N.S.S. also enumerates all local users and groups, and marks user
accounts not being used, allowing you to remove the accounts you do not need. It
is important to disable all unused accounts and ensure that the used accounts
(administrator) have a strong password.
Automatically downloads Microsoft security patch
information
GFI LANguard N.S.S. always has up-to-date information about Microsoft security
patches, exploits and Hotfixes because it automatically downloads the Hotfix and
security bulletins from the Microsoft website.
Vulnerabilities database includes UNIX/CGI issues
GFI LANguard N.S.S. also audits for UNIX and cgi vulnerabilities. The GFI
LANguard N.S.S. vulnerabilities database is regularly updated with issues
reported to BugTraq.
Query generator for scan reports*
Because scan reports can include a lot of data, GFI LANguard N.S.S. includes a
query generator that allows you to filter the XML scan reports for specific
data. For example, you can query a scan result for all machines with shares, or
for all machines running FTP servers.
LANguard Scripting (LANS)*
GFI LANguard N.S.S. includes a script engine for writing complex security
checks. Using the script editor, with syntax highlighting capabilities and a
debugger, you can create custom security checks for your network.
Identifies all installed Windows services
Disable all services that you do not need! All services running on the scanned
machines are listed. Each service can be a potential security risk, so
closing/switching off what you do not need automatically reduces the security
risk.
View screenshot
Check if auditing is enabled & enable network-wide
auditing
GFI LANguard N.S.S. checks if each NT/2000/XP machine has security auditing
enabled. If not, GFI LANguard N.S.S. alerts you and permits you to enable
auditing remotely. Security event auditing is highly recommended - it allows you
to detect intruders in real time. GFI LANguard N.S.S.'s companion product
GFI LANguard Security Event Log Monitor (S.E.L.M.)
automates network-wide, real time analysis of security events.
Check password policy
GFI LANguard N.S.S. can automatically check password policy for all machines on
the network. You can ensure that the password policy is secure, for example, by
enabling a maximum password age, password lockout and password history.
Check for programs that run automatically
GFI LANguard N.S.S. can find programs that are automatically launched on a
user's workstation. Review these entries carefully for possible Trojans.
HTML/XML reports
GFI LANguard N.S.S. outputs scan results to a graphical HTML report, so that you
can print the report and review it easily.
Read what makes GFI LANguard N.S.S. more powerful than Microsoft's Security
Baseline Analyser
Read what's new in GFI LANguard Network Security Scanner version 3
Other features:
| Scans large networks by sending UDP query status to every
IP |
| Lists NETBIOS name table for each responding computer |
| Provides NETBIOS hostname, currently logged username & MAC
address |
| Provides a list of shares, users (detailed info), services,
sessions, remote TOD (time of day) & registry information from remote computer
(NT/2000) |
| Tests password strength on Windows 9x/NT/2000 systems using
a dictionary of commonly used passwords |
| SNMP device detection, SNMP Walk for inspecting network
devices like routers, network printers...
|
| Support for sending spoofed messages (social engineering)
|
| DNS lookup (www.somehost.com - > xxx.xxx.xxx.xxx); resolve
hostnames (reverse DNS) |
| Trace route support for network mapping |
| Configuration manager so you can easily save particular
scans. |
You're in good company...
Many leading companies have chosen GFI LANguard N.S.S. Here are just a few:
Daimler Chrysler, Siemens Communications Limited, EDS, United Overseas Bank Ltd,
Virgin Mobile, Medical Research Council (UK), Anglicare, Amersham plc, and many
more.
* These features are part of the registered/purchased version only.
The scanning features of NSS will continue to function after the 30 day
evaluation and can be used non-commercially for free.
|
