• Container Security Resources

    Qualys Container Security discovers, tracks and continuously secures containers from the DevOps pipeline to runtime deployments. CI/CD pipeline integration with Jenkins Assess images locally and in th...
    Robert Dell'Immagine
    last modified by Alex Mandernack
  • Getting incomplete results from Container Security

    We are running into some issues when scanning containers, in order to find vulnerabilities on third-party dependencies.   First, I'd like to know how this works? Is it possible that this feature looks for depend...
    Maximiliano Lagos
    last modified by Maximiliano Lagos
  • Qualys integration with AWS Security Hub

    Introduction Customers can now access Qualys vulnerability and policy compliance findings in the Amazon Web Services (AWS) Security Hub. This will help them prioritize risks and automate remediation using na...
    Hari Srinivasan
    last modified by Santosh Mukkawar
  • more information on Cloud agent

    Hi Experts,   I have used traditional VM scanners for scanning hosts, scheduling scans and then viewing the results of the scan etc. I'm new to Cloud agent. So Cloud Agent module is there no concept of scheduled...
    Vulnerability Lover
    last modified by Vulnerability Lover
  • Instance type c5.9xlarge?

    Does Qualys support c5.9xlarge instances?
    last modified by lukcem
  • Qualys Agent in Docker containers

    Hi,   Is it possible to have some information about scanning in Docker containers?   I know there is the new sensor, but I would like some information before deploy it.   Firstly, I would like to und...
    Max Max
    last modified by Max Max
  • Container Security on openshift/kubernetes

    Anyone have any success with container security module in an openshift environment running kubernetes? I deployed the sensor to 3 pods and Qualys keeps registering new sensors every minute or two... My 3 sensors ar...
    last modified by derekv
  • Kubernetes security flaw (CVE-2018-1002105)

    Will Qualys be releasing some detection based on versioning in the container security module for this cve?   Research write up: Kubernetes security flaw (CVE-2018-1002105) - elastisys  Bug fix:https:/...
    last modified by derekv
  • Getting Started with Qualys Container Security from AWS Marketplace

    Introduction Qualys Container Security is now available in AWS Marketplace under BYOL. Users can buy the licenses from Qualys and deploy the Container Sensor 'side-car' to secure their Container deployments in A...
    Hari Srinivasan
    last modified by Robert Dell'Immagine
  • Qualys CS lose connection with dockers

    Hi guys, I need some help, after the K8S security update, I lose connection with the dockers, I just only see the dashboard, somebody knows something?
    Cristian Rivas
    last modified by Cristian Rivas
  • Has anyone automated the deployment of the container sensor? 

    I am trying to create a lambda that will do this (with the Activation ID and Customer ID entered by the user as a parameter) for different AWS accounts in our organization.  Current instructions require authentic...
    Frank Dooling
    last modified by Frank Dooling
  • Code 999 while creating EC2 scan

    Dear All, I'm trying to create an automated EC2 scan.   My workflow: create the, to be scaned, stack in the Amazon create Virtual Scan Appliance (VSA) in Qualys create VSA in the Amazon and wait un...
    Maxim Budyonny
    last modified by Maxim Budyonny
  • Using Cloud Agent in AWS ECS infrastructure

    We are considering a deployment of Virtual Scanner Appliance and I have two related questions.   1. Can Cloud Agents be used in Amazon Elastic Container Service (ECS) based infrastructure (Docker images deployed...
    Marcin Zajączkowski
    last modified by Marcin Zajączkowski
  • AWS EC2 Connector creation automation

    Our AWS environment has processes to create new AWS Accounts. Has anyone done any automation to allow the AWS account creation to also create the EC2 connector?  We currently have almost 300 accounts and this wil...
    Byron Fackenthall
    last modified by Byron Fackenthall
  • External PCI ASV Scans on Google Cloud

    We need to run external PCI ASV scans on sites hosted in the Google Cloud.   The ips in the cloud may not be static ip?   How do we accomplish this?  Thanks,
    James Insinga
    created by James Insinga
  • Qualys Virtual Scanner - Azure - Offline

    I have Virtual Scanner on Azure Platform which was deployed through CLI mode. During the recent maintenance by Azure , the Virtual Instance rebooted or had downtime for 30 minutes. once the instance were up and runnin...
    Jatin Chauhan
    last modified by Jatin Chauhan
  • Dynamic tagging on Azure subscriptions

    We have several Azure subscriptions which have been integrated with our Qualys subscription (https://discussions.qualys.com/docs/DOC-5823-deploying-qualys-cloud-agents-from-microsoft-azure-security-center).  In o...
    Umair Imran
    last modified by Umair Imran
  • Web Application Scanning in Azure

    Good Morning Qualys Community,   We are in the process of setting up Web Application Scanning in our Data Centre environment and in Azure.   As part of some penetration testing a couple of years ago, we ha...
    Mark Conboy
    last modified by Mark Conboy
  • Scanner for multiple VPC in AWS

    Hi   Can I use the same pre-authorised scanner to scan all the VPCs in my AWS subscription?
    Max Max
    last modified by Max Max
  • Server less components in AWS

    Do we have any solutions from qualys on scanning for vulnerabilities and identifying the misconfiguration on the server less components in AWS like AWS Lambda, API Gateway and Dynamo DB.   Please let know know
    Saravanan Subramanian
    last modified by Saravanan Subramanian