LANguard Network Scanner upgraded. (Network Products).

LANguard Network Scanner 2.0 is a commercial and freeware tool for conducting security audits on Windows-based networks. The $99 commercial edition permits administrators to compare consecutive scan results for identification of new security holes.

The regular and upgraded versions also have a variety of other upgrades, including the ability to detect known network vulnerabilities in areas such as HTTP HTTP
in full HyperText Transfer Protocol

Standard application-level protocol used for exchanging files on the World Wide Web. HTTP runs on top of the TCP/IP protocol. , FTP FTP
in full file transfer protocol

Internet protocol that allows a computer to send files to or receive files from another computer. Like many Internet resources, FTP works by means of a client-server architecture; the user runs client software to connect to and SMTP (Simple Mail Transfer Protocol) The standard e-mail protocol on the Internet and part of the TCP/IP protocol suite, as defined by IETF RFC 2821. SMTP defines the message format and the message transfer agent (MTA), which stores and forwards the mail. services.

Comment:

LANguard Network Scanner intelligently scans a network for weak points and supplies complete NETBIOS information for each machine, including a list of shares. It detects and alerts administrators to open ports, unnecessary shares, registries that need to be closed down, and other points of vulnerability. It also performs OS detection and password strength testing. The new scan comparison capability in Version 2.0, exclusive to the commercial version, enables network administrators to compare the results of two different scans in order to quickly identify network changes such as newly installed services, newly added users, or newly added ports. Each comparison result screen lists all differences between the scans, alerting administrators to any suspicious alterations in the network.

Also new in Version 2.0 is the ability to spot and red-flag network vulnerabilities such as backdoor users and rogue services; Windows misconfigurations; and trouble spots in HTTP, FTP and SMTP services ranging from FTP configuration problems and easy-to-guess passwords to the IIS/PWS Unicode directory traversal vulnerability exploited by the Nimda worm.

Other new features include:

* OS detection using port, banners (FTP, HTTP, SMTP), identd daemon and SNMP (Simple Network Management Protocol) A widely used network monitoring and control protocol. Data are passed from SNMP agents, which are hardware and/or software processes reporting activity in each network device (hub, router, bridge, etc. Object ID where available, in addition to OS detection using SMB (1) (Small to Medium-sized Business) Also called "SME" (small to medium-sized enterprise), it refers to companies that are larger than the small office/home office (SOHO), but not huge. queries available in Version 1.0

* Server enumeration, providing an inventory of all Windows computers on the network

* CGI probing to check for common vulnerabilities on Web servers

* SNMP audits to test password strength using a dictionary of commonly used passwords, expanding on Version I.O's SNMP device detection and SNMP Walk for inspecting network devices such as routers and printers

* Enhanced scanning of large networks by sending miscellaneous ICMP (Internet Control Message Protocol) A TCP/IP protocol used to send error and control messages. For example, a router uses ICMP to notify the sender that its destination node is not available. messages (echo, timestamp and information requests) as well as UDP UDP (uridine diphosphate): see uracil.

(User Datagram Protocol) A protocol within the TCP/IP protocol suite that is used in place of TCP when a reliable delivery is not required. query status to every IP address

* Report output in both HTML HTML
in full HyperText Markup Language

Markup language derived from SGML that is used to prepare hypertext documents. Relatively easy for nonprogrammers to master, HTML is the language used for documents on the World Wide Web. and XML www.gfi.com/languard/lanscan.htm.

COPYRIGHT 2002 A.P. Publications Ltd.
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Database and Network Journal
Article Type:	Product Announcement
Geographic Code:	1USA
Date:	Apr 1, 2002
Words:	362
Previous Article:	Legato NetWorker extends NDMP-NAS protection to Windows backup servers. (Network Products).(Legato NetWorker 6.2)(Brief Article)(Product Announcement)
Next Article:	Netcool solutions. (Network Products).
Topics:	Computer software industry Product introduction Network security software Product introduction Security software Product introduction Software industry Product introduction

Related Articles
FASTLANE DM/CONSOLIDATOR UPGRADE SUPPORTS NETWORK APPLIANCE STORAGE PRODUCTS.(Brief Article)(Product Announcement)
LANguard Security Event Log Monitor.(GFI Software)
Free copy of Languard Security Event Log Monitor (S.E.L.M.). (Security Notes).(Brief Article)
GFI LANguard Security Event Log Monitor (S.E.L.M.) 3.0. (Security).(Brief Article)(Product Announcement)
EventLogScan-free online event log scanning service. (News and Products).(Brief Article)
LANguard Network Scanner free. (News and Products).
LANguard Content Filtering. (Virus Notes).(GFI LANguard Content Filtering & Anti-virus for ISA Server)(Product Information)(Brief Article)
Network security scanner now commercial. (Security News and Products).
LANguard N.S.S. 3.2 patch management solution. (Database and Network News & Products).
Security Event Log Monitor (S.E.L.M.) 5.(Security)