Built-in reports
LANGuardian includes over 80 built-in reports. You can also create your own reports and configure them
to run on demand or at scheduled intervals.
Basic security reports
| Events |
Netscan |
Behavior |
| by Signature |
by Port |
Net Exporters of Data |
| by IP |
by Source |
|
| by User |
Port 445, 139 |
|
Advanced security reports
| Events |
Netscan |
Behavior |
| by Category |
Netscans by IP |
|
| by Destination |
Netscans by user |
|
| by Source |
|
|
| Systems accessing websites associated with malware |
|
|
| Systems connecting to Conficker-associated malware websites |
|
|
| Systems generating a level of brute-force logins normally associated with Conficker |
|
|
Low-level security event reports
| events (all) by Category |
event list (Conficker) |
events (all) by IP |
events (all) by User |
| events (dns_mx_lookups, possible SPAM) |
events (Conficker Worm Brute Force Logins, drilldown) |
events (DNS lookup) by IP |
events (DNS lookup) by User |
| events (emails) |
events (ids) by IP |
events (ids) by User |
events (info_hash) by IP |
| events (info_hash) by User |
events (mac) |
events (report alert) |
events (Signature Breakdown) by User |
| events (trend) |
events (volume overflows) by IP |
events (volume overflows) by User |
Spyware Http Requests by IP |
| Spyware HTTP Requests by User |
User Events |
|
|
Basic bandwidth reports
| IP |
Ethernet |
| Traffic Distribution |
Traffic Distribution |
| Top Talkers |
Top Talkers |
| Top Clients |
|
| Top Servers |
|
| Top Users |
|
| Top Departments |
|
Advanced bandwidth reports
| IP |
Ethernet |
| Top Packet Generators |
Top Broadcasters |
| TOS Distribution |
|
| Traffic Distribution::TCP |
|
Low-level Bandwidth Reports – IP
| Flows by IP |
Flows by User |
Flows with RTT |
Flows (Packets sent/received) |
| Sessions by IP |
Sessions by User |
Sessions (In) by IP |
Sessions (In) by User |
| Sessions (In/Out) |
Traffic (In/Out) |
Traffic Distribution by User |
Traffic In (Top Receivers) |
| Traffic In (Top Senders) |
Traffic In (Top Users) |
Traffic Out (Top Receivers) |
Traffic Out (Top Senders) |
| Traffic Out (Top Users) |
|
|
|
Low-level Bandwidth Reports – Ethernet
| Flows by IP |
Flows by User |
Sessions |
Basic policy reports
Policy reports are divided into two categories: P2P Signatures and Skype Activity.
| P2P Signatures |
Skype Activity |
| P2P Signature Report |
Activity by IP |
|
Activity by User |
|
Social Networking HTTP Requests |
Basic network inventory reports
Network inventory reports are divided into two categories: Network Services, and Operating Systems.
| Network services |
Operating systems |
|
| Network services |
Operating systems |
|
| Network services by IP |
Operating systems by IP |
|
| DHCP servers |
|
|
| MAC addresses |
|
|
| Trends |
Web |
Windows file shares |
| View Trends |
By User |
Search By User |
|
Top Websites |
Search by Filename |
|
Top Proxy Clients |
|
| Identity |
Service Inspector |
E-mail |
| Directory Logins |
Current Status |
By Subject |
|
|
By Sender |
|
|
By User |
|
|
Yahoo::Outbound file |
|
|
Attachments |
| Web Browsers |
SQL Server |
Bandwidth Quota |
| Web Clients |
Top Database |
Status Summary |
|
|
Status by Group |
Advanced module reports
| Trends |
Web |
Windows file shares |
|
Departments with the most Web Activity |
Access databases |
|
Top proxy servers |
Deleted Office documents |
|
Top proxy users |
Executable files |
|
Top websites and URI |
Microsoft Office files |
|
Website accesses broken down by category |
Music files |
|
Website accesses broken down by category (with RTT) |
PDF files |
|
|
Video files |
|
|
Most active clients |
|
|
Most active servers |
|
|
Deleted folders |
|
|
Finance folders |
|
|
HR |
|
|
Legal folders |
|
|
User folder activity |
|
|
Show directories that have been deleted. |
|
|
Data totals |
|
|
Most active users |
|
|
MS Office files |
|
|
Music file sharing |
| Identity |
Service Inspector |
E-mail |
| Directory Logins by IP |
Hosts Down |
By Source IP |
| Web Browsers |
SQL Server |
Bandwidth Quota |
| Mobile devices connected to the network |
Compliance :: Automatic Database Discovery |
Events (user policy) |
| Systems connecting to Microsoft SMS Server |
Compliance :: Data Modification |
Status |
| Systems not running Windows Update |
Compliance :: Privileged DB Users |
|
| Systems running Linux |
Compliance :: Schema Modification |
|
| Systems running MacOS X |
Compliance :: Statement Audit Log |
|
| Systems running multiple web clients |
Top Active Directory User |
|
| Systems running Windows 2000/2003 |
Top MS SQL Client by Number of Queries |
|
| Systems running Windows 7 |
Top MS SQL Clients by Data Volume |
| |
| Systems running Windows Update |
Top MS SQL Servers by Data Volume |
|
| Systems running Windows XP |
Top MS-SQL Application |
|
|
Top Statement |
|
|
Top Statement Type |
|
|
Top Username |
|
