Strengths: In-depth credential-based scanning and auditing.
Weaknesses: Only one piece of the suite, so functionality is limited.
Verdict: A good scanner that really needs the rest of the suite to shine.
SummaryLumension Scan is a component of the larger Lumension Vulnerability Management suite. This product is a complete standalone, network-based scanner that performs a comprehensive scan of all devices connected to the network. The tool provides scanning based on standards - such as CVE, Bugtraq, SANS, MS Advisory and NVD - in one tool, along with enterprise and local reporting of asset inventory, network or agent-based scans and vulnerability remediation.
This product is a simple install from a single executable that initiates all necessary components, including the backend SQL database. Once installed and the application is launched, the user is presented with the easy-to-navigate management interface. The majority of the scan process is automated and we found it simple to create scan jobs and manage scan results.
Scan dives deep into target systems using credential-based scanning to access administrator shares, and even the Windows Registry, to ensure comprehensive vulnerability assessment. Furthermore, it can also discover and inventory almost any device with an IP address, including various routers, switches, printers and wireless access points. This product provides audits against vulnerabilities, as well as null passwords and various peer-to-peer software, which can leave large security holes in the network.
Documentation is comprised of a PDF user guide that details everything from installation, configuration and using product features. This guide also includes many step-by-step instructions, as well as screen shots and configuration examples. However, we did find many places without screen shots where it would have been helpful to have them. For example, in the Scanner Options section the documentation lists various settings for which it would have been helpful to have a screen shot with labels and descriptions.
Lumension offers standard technical support included with the purchase of the product. This support includes 8 a.m. to 5 p.m. EST phone support and email support response within one business day. Premium support can be purchased and provides 24/5 phone support and email response time of four business hours. Both support levels also get access to an online support area with a knowledge base and user forum.
With prices starting at $8 per seat, this product would seem on the surface to be an excellent value for money. However, we find that it is very basic in and of itself without the other components of the suite. We do like that it is easy to use, and it does do some solid credential-based scanning, which is why we find it to be an average value for the money.