GFI LanGuard 2012
Strengths: The GFI LanGuard 2012 is a full vulnerability management suite in one easy-to-use application
Weaknesses: Nothing that we found
Verdict: This is a very well integrated vulnerability management system – a real pleasure to use. Recommended
GFI LanGuard 2012 offers a full set of vulnerability scanning and management features. It brings together vulnerability scanning, remediation and patch management, as well as network and software auditing, all under one roof. LanGuard is software-based and can be installed on almost any Microsoft Windows machine in the enterprise environment and can scan Windows, Linux/Unix and Mac OS targets on the network.
We found installation and deployment to be easy. The initial setup was done by simply running the installation executable. When we launched the installer, we were presented with a short installation wizard that also preloaded all the necessary components, including the .Net Framework.
After this was complete, we were able to launch the application and get started. The first time we did this, it ran a scan of the local machine and gave a full vulnerability and inventory report. Once that was complete, we navigated around the interface and found it easy and intuitive to use. Also, LanGuard features many colourful charts and graphics, as well as many expandable scan results.
LanGuard can run in both agent-based and agentless modes. Agents can be easily deployed to provide scanning ability to remote machines or laptops that may need to leave the enterprise. This ensures that all inventory is monitored even when not connected directly to the network.
From a compliance standpoint, this tool comes preloaded with many regulatory compliance scanning templates, including PCI DSS, HIPAA, GLBA and PSN CoCo (Public Services Network Code of Connection), among many others. LanGuard allows for administrators to scan network assets for vulnerabilities on an ongoing basis, as well as monitor possible changes that could affect security and compliance, such as newly installed applications.
Documentation consisted of a few PDF guides, including installation, administrator and scripting manuals. The installation guide provided a detailed overview of implementation of the product, agent deployment and a basic feature overview. The administrator guide provided a much more in-depth look, including advanced installation instructions and full feature and function configurations. We found all guides to contain many screenshots and step-by-step instructions in a clear format.
GFI includes full product and technical support for one year as part of the purchase price. After the first year, customers can buy additional assistance as part of an annual maintenance contract. Aid offered includes 24/7 phone- and email-based technical support, as well as access to updates and upgrades, web-based chat, online knowledgebase and user forum.
At a price starting at around £10 per seat for 100 to 249 seats, LanGuard may seem a little expensive at first glance, but we find it to be excellent value. With this product, customers get a vulnerability scanner, patch management system and compliance auditing platform all in one, and they are all well designed and easy to use, which we think is well worth the cost.