Table of ContentsPreviousNextIndex

Filtering scan results

Introduction

Following a security scan, you can filter the scan results and only display the information that you wish to analyze. For example, you can filter the information collected during a scan and only display details related to computers with high security vulnerabilities.

Screenshot 39 - Scan filter nodes

To filter scan results, you must apply a `Scan Filter' over the data collected in the security scan. Scan filters are queries which extract and display specific scan result details. GFI LANguard N.S.S. ships with a number of default filters. These include:

  • Full report: Shows all security related data collected during a scan.
  • * Vulnerabilities [High Security]: Shows critical issues which require immediate attention such as missing service packs, missing patches, high security vulnerabilities and open ports.
  • * Vulnerabilities [Medium Security]: Shows issues which may need to be addressed by the administrator such as average threats and medium vulnerability patches.
  • * Vulnerabilities [All]: Shows all High and Medium vulnerabilities discovered during a security scan such as missing patches, and missing service packs.
  • * Missing patches and service packs: Shows all missing service packs and patch files discovered on the scanned target computer(s).
  • * Important devices - USB: Shows all the USB devices attached to the scanned target computer(s).
  • * Important devices - Wireless: Shows all the wireless network cards, (both PCI and USB) attached to the scanned target computer(s).
  • * Open ports: Shows all open TCP and UDP ports discovered on the scanned target computer(s).
  • * Open shares: Shows all open shares and the respective access rights.
  • * Auditing policies: Shows the auditing policy settings of the scanned target computer(s).
  • * Password policies: Shows the active password policy settings configured on the scanned target computer(s).
  • * Groups and users: Shows the users and groups detected on the scanned target computer(s).
  • * Computer properties: Shows the properties of each target computer.
  • * Installed applications: Shows all the installed applications (including security software) discovered during target computer scanning.
  • * Non-updated security Software: Shows only the installed security applications (i.e. anti-virus/anti-spyware software) that have missing updates and outdated signature definition files.

NOTE: You can also create new scan filters or customize the above default scan filters.

Table of ContentsPreviousNextIndex