What is it about?
Among the established practices in every IT Security department: the Vulnerability Assessment is a precise “X-ray” of the status of a network at any given time, based on specific active techniques of interaction with the targets.
Since these techniques are not always applicable to sensitive systems, e.g. ICS / SCADA, CryptoNet Labs has chosen LANGuardian for its portfolio of Offensive and Security tools and services, a module designed by our partner Netfort specifically for passive vulnerability access.
LANGuardian is the most effective network visibility, forensics and cybersecurity solution for monitoring the security of your internal networks on an ongoing basis. Thanks to the network traffic replication (switch mirroring), Netfort platform is able to apply Deep Packet Inspection techniques on different IT protocols in a non-invasive way, in order to identify anomalies and security problems. In addition, it can link specific activities to the user who performed them, observing communications with the Active Directory, DHCP servers or other similar services.
Netfort allows you to understand “who is talking to whom”, information not always clear to the IT function, determining for example, who has had access to confidential data. It can also identify indicators of compromise for malware infections or diagnose problems in the use of the bandwidth to the Internet.
Through a powerful web interface, it represents the state of the network at a synthetic level, with the due details of detail, and the focus on the vulnerabilities found (emblematic of the usefulness of this tool: the ability to census which servers expose SMB version 1 and disable it, even before a patch for WannaCry comes out).
Who can benefit from it
Any company or organisation interested in monitoring the status of its network, on a daily and/or continuous basis, with the possibility of using monitoring as proof of “continuous compliance”.