GFI LanGuard Summary

The integration of GFI LanGuard with the Centraleyezer Vulnerability Management platform streamlines the import and management of security findings. This collaboration allows organizations to efficiently identify, prioritize, track, and remediate vulnerabilities, strengthening their security posture and improving risk management.

GFI LanGuard Key Features

  • Data Import:

    • Import assets, scan summaries, and vulnerabilities from GFI LanGuard into Centraleyezer, either on-demand or via automated schedules.

    • Supported formats: XML.

  • Detailed Findings:

    • Centraleyezer provides comprehensive vulnerability details based on GFI LanGuard security assessments.

  • Risk Scoring:

    • Configurable severity values for GFI LanGuard findings, aligned with organizational risk policies.

  • Selective Data Import:

    • Supports filtering based on status, scan type, and severity for more precise data imports.

Considerations

  • The integration supports mapping one GFI LanGuard instance with one Centraleyezer instance.

  • Configuring a different GFI LanGuard instance in the plugin will overwrite previously imported data.

Requirements

  • System Requirements:

    • Centraleyezer Prerequisites: Latest version of the Centraleyezer Vulnerability Management Platform is recommended.

    • GFI LanGuard Prerequisites: API access must be enabled with proper authentication and must support findings export and API-based integration.

  • Permissions and Roles:

    • Centraleyezer: Requires System Admin or Application Security Manager permissions.

    • GFI LanGuard: User access for vulnerability scan results.

    • Import mappings require admin-level permissions.

Release Notes

Version 1.0.0:

  • Mapped vulnerabilities from GFI LanGuard security scans, including:

    • Finding Target

    • Hotfix

    • Asset Target

    • Host

    • Asset

    • Name

    • Description

    • Recommendation