GFI Product Comparison GFI LanGuard 2011 vs Microsoft Baseline Security Analyzer 2.2
General features GFI LanGuard 2011 MBSA 2.2 Scheduled scans r Agent-less Agent-based Integration with Active Directory r Assets tracking r Installs on workstations Network utilities (DNS lookup, traceroute, SNMP walk, etc.) r Flexible scan target (single machine, list of computers, IP ranges, domains, etc.) ééééé éééé Vulnerability management Scan for Windows vulnerabilities Scan for Linux/Mac OS vulnerabilities r Scan for application vulnerabilities r OVAL-certified r CVE-certified r Custom vulnerability checks r Scripting support (VB, Python, SSH) r Vulnerability remediation r Integrated with remote desktop connections r Patch management Detect Microsoft missing patches Detect Linux and Mac OS missing patches r r Detect applications missing patches (non-microsoft) r Deploy Microsoft patches r Deploy Linux and Mac OS patches r r Deploy application patches (non-microsoft) r Deploy custom software and scripts r Automatic detection, download and deployment of patches r Rollback patches r Post patch deployment reboot control r GFI LanGuard 2011 vs. Microsoft Baseline Security Analyzer 2.2 2
Network and software audit GFI LanGuard 2011 MBSA 2.2 Port scanning Retrieve computer network role r Retrieve list of shares Retrieve users and groups r Retrieve installed services Retrieve logged-on users r Retrieve password and security audit policies Hardware audit Virtual machines detection File system monitoring r r Get email notifications on system changes r Installed software r Integration with over 1,500 critical security applications (antivirus, antispyware, firewalls, backup, etc.) r Uninstall or get notified on unauthorized applications r Reporting Technical reports Dashboard r Results comparison and baselining r Scheduled reports r Email reports r Export reports to various formats (PDF, DOC, HTML, XML, etc.) r Full text search support r PCI DSS dedicated reports r Reports branding r Advanced results filtering options r GFI LanGuard 2011 vs. Microsoft Baseline Security Analyzer 2.2 3
MBSA 2.2 Weaknesses GFI LanGuard 2011 Strengths Less functionality Only works as a vulnerability assessment tool. Complete network security audit solution Works as a virtual security consultant assisting with vulnerability assessment, patch management, network and software audit and security issues remediation. Works only with Microsoft products Does not support products from other vendors. Vulnerability assessment not limited to Microsoft Supports non-microsoft products and non- Microsoft operating systems, e.g., Linux, Mac OS (apart from working with Microsoft products). Conclusion MBSA 2.2 is a vulnerability assessment tool that works only with Microsoft products. GFI LanGuard supports both Microsoft products/oss and other applications. It also provides more than just vulnerability assessment: It is a complete network security audit solution. GFI LanGuard 2011 vs. Microsoft Baseline Security Analyzer 2.2 4
USA, CANADA AND CENTRAL AND SOUTH AMERICA 15300 Weston Parkway, Suite 104, Cary, NC 27513, USA Telephone: +1 (888) 243-4329 Fax: +1 (919) 379-3402 ussales@gfi.com UK AND REPUBLIC OF IRELAND Magna House, 18-32 London Road, Staines, Middlesex, TW18 4BP, UK Telephone: +44 (0) 870 770 5370 Fax: +44 (0) 870 770 5377 sales@gfi.co.uk EUROPE, MIDDLE EAST AND AFRICA GFI House, San Andrea Street, San Gwann, SGN 1612, Malta Telephone: +356 2205 2000 Fax: +356 2138 2419 sales@gfi.com AUSTRALIA AND NEW ZEALAND 83 King William Road, Unley 5061, South Australia Telephone: +61 8 8273 3000 Fax: +61 8 8273 3099 sales@gfiap.com Disclaimer 2011. GFI Software. All rights reserved. All product and company names herein may be trademarks of their respective owners. The information and content in this document is provided for informational purposes only and is provided as is with no warranty of any kind, either express or implied, including but not limited to the implied warranties of merchantability, fitness for a particular purpose, and non-infringement. GFI Software is not liable for any damages, including any consequential damages, of any kind that may result from the use of this document. The information is obtained from publicly available sources. Though reasonable effort has been made to ensure the accuracy of the data provided, GFI makes no claim, promise or guarantee about the completeness, accuracy, recency or adequacy of information and is not responsible for misprints, outof-date information, or errors. GFI makes no warranty, express or implied, and assumes no legal liability or responsibility for the accuracy or completeness of any information contained in this document. If you believe there are any factual errors in this document, please contact us and we will review your concerns as soon as practical.