GFI LanGuard 2011 in-depth

GFI LanGuard is a fully integrated, highly reliable and scalable security scanning, network auditing and remediation solution that allows the:

Identification of system and network weaknesses. With an integrated and comprehensive vulnerability check database it provides the ability to carry out custom and predefined tests based on OVAL, CVE and SANS Top 20 vulnerability assessment guidelines.
Auditing of network hardware and software assets. This has the added advantage of providing an organisation with a detailed inventory of assets, including installed applications, USB and other devices previously and currently connected to the network.
Automatic download and remote installation of service packs, patches and hotfixes for the Microsoft OS and third party products as well as allowing the automatic un–installation of unauthorised software.

Catering for both medium to larger sized networks, GFI LanGuard has a number of extensible components that can be used, thus it is able to reduce the total cost of ownership for a company allowing it to centralise vulnerability scanning, patch management and network auditing. Features include:

GFI LanGuard management console – enabling the configuration and use GFI LanGuard and analysis of audit results.
GFI LanGuard attendant service – background service that manages scheduled network security scans, patch deployment and remediation operations.
GFI LanGuard agent deployment – enabling real time results analysis, reducing network bandwidth consumption. (Agents can be deployed automatically as machines are enumerated or manually on selected computers).
GFI LanGuard patch agent service – background service handling service pack, patch and software updates on managed assets.
GFI LanGuard Script Debugger – allows the ability to write and debug custom VBScripts.

GFI LanGuard is available to evaluate for 30 days, after such time a licence is required for corporate use. Licences are usually based on the amount of IP’s you wish the tool to scan, a full pricing structure is available from here.

Installation:

Download the latest version from the website here (Installation manual is available from here).

Simply double-click the executable.
Register with supplied username and registered licence or 30-day evaluation key.
Insert appropriate administrative account details to enable automated and scheduled scans and updates to take place.
Select appropriate path: C:\Program Files\GFI\LanGuard 10\ (default)
Program will install then automatically launch.

Pre-requisites:

Windows XP SP2+, Windows 2003+ (Some limitations exist on home and home premium editions).
Microsoft Installer 3.1 Redistributable
Microsoft .NET 3.5 Service Pack 1
Microsoft Data Access Components (MDAC) 2.8
Supported databases:
Microsoft SQL Server 2000 or later
MSDE/SQL Server Express Edition

Note: – Windows Firewall, if enabled will block some features and as such a prompt will appear requesting access for GFI LanGuard to scan Private/ Public Networks.

The full review can be found here