Skip navigation

API Notifications

3 Posts authored by: Chris Farrow

A new release of QualysGuard®, Version 7.1, will be available in production in the US on May 1st 2012 and in the EU on May 8th 2012. This release is completely transparent to users and will require no scheduled downtime.

 

QualysGuard 7.1 includes a number of API enhancements. This notification provides an early preview of these API enhancements, allowing you to make any changes to automated scripts or code that utilize the following APIs:

 

Vulnerability user comments exposed in a dedicated section in XML outputs:

In the QualysGuard user interface, Manager users can add custom comments to the vulnerability Threat, Impact and Solutions sections. With QualysGuard 7.1, those custom comments will be exposed in a dedicated section for some XML outputs (listed below) generated via the API or via the download function of the User Interface. Separating the user comments from the descriptions provided by QualysGuard in the XML outputs helps users to extract the customized comments in a much easier way.

 

Enhancements to Detection API

The “detection” API v2 (/api/2.0/fo/asset/host/vm/detection/), which is the most recommended API function to download vulnerability information from the API, has been enhanced to simplify the existing differential update capabilities. In QualysGuard 7.1, the output of the “detection” API includes the “FIXED” vulnerabilities, and a new input parameter called “max_days_since_last_vm_scan=X” can be used to only download the hosts with vulnerabilities updated during the X past days.

 

Detection API enhancements in this release:

  • New “Fixed” value for <STATUS> in output and new input parameter “status={value}”
  • New input parameter “max_days_since_last_vm_scan=X"
  • New input parameter “suppress_duplicated_data_from_csv={0|1}”

 

Please note there are no DTD changes for the detection API enhancements for QualysGuard 7.1.

 

Policy Report XML Output- DTD Update

The policy report can be downloaded using: a) the QualysGuard user interface, and b) the report share API v2 (/api/2.0/fo/report/?action=fetch). The policy report XML output uses the posture_info_list_output.dtd. This DTD can be found at the following URL (where qualysapi.qualys.com is your API server URL): https://qualysapi.qualys.com/compliance_policy_report.dtd

 

 

Posture Info API XML Output- DTD Update

The posture info API v2 request (/api/2.0/fo/compliance/posture/info/?action=list) is used to view current compliance posture info records for a selected policy. This API returns XML output using the posture_info_list_output.dtd. This DTD can be found at the following URL (where qualysapi.qualys.com is your API server URL):

https://qualysapi.qualys.com/api/2.0/fo/compliance/posture/info/posture_info_list_output.dtd

 

 

 

Full details regarding these XML changes are available within the Qualys community at: https://discussions.qualys.com/docs/DOC-3478

 

 

API release notes will be available to customers from within the Resources section of your QualysGuard account. To receive more information on QualysGuard 7.1, please visit the Qualys Community at https://community.qualys.com or contact your Technical Account Manager or Qualys' Technical Support Department at support@qualys.com.

A new release of QualysGuard®, Version 6.24, will be available in production in the US on January 31st 2012 and in the EU on Tuesday February 7th 2012. This release is completely transparent to users and will require no scheduled downtime.

QualysGuard 6.24 includes a number of API enhancements. This notification provides an early preview of these API enhancements, allowing you to make any changes to automated scripts or code that utilize the following APIs:

 

  • Final CVSS Score Added to Asset Data Report DTD

The final CVSS score calculated for each vulnerability detection now appears in the automatic asset data report DTD (asset_data_report.dtd) when the CVSS scoring feature is enabled for the user’s subscription. The CVSS score is calculated following the formula specified in the CVSS Version 2 standards.

 

 

  • New Share PCI Scan V2 API

 

The new Share PCI Scan V2 API (/api/2.0/fo/scan/pci/) provides an automated way to share (export) finished PCI scans to PCI Merchant accounts and check the export status. A PCI scan is a vulnerability scan that was run with the option profile “Payment Card Industry (PCI) Options”.

 

 

 

 

  • Scan List API v2: New PCI Only Filter

The scan list V2 API (/api/2.0/fo/scan/) is used to search and view scans in the user’s scan history list. Using this API with the new pci_only input parameter, API users can restrict the scan list output to PCI scans only. PCI scans are vulnerability scans that were run with the option profile “Payment Card Industry (PCI) Options”.

 

 

  • OS CPE Support

With this release, OS CPE names are collected for operating systems detected on hosts when the OS CPE feature is enabled for the subscription and authenticated scans have been performed after enabling this feature. The service has the ability to collect OS CPE names during vulnerability scans and compliance scans. In the XML output for several reports, the <OS_CPE> element identifies the OS CPE name for the detected operating system.

 

 

 

 

 

Full details regarding these XML changes are available within the Qualys community at: https://discussions.qualys.com/docs/DOC-3266

 

API release notes will be available to customers from within the Resources section of your QualysGuard account. To receive more information on QualysGuard 6.24, please visit the Qualys Community at https://community.qualys.com or contact your Technical Account Manager or Qualys' Technical Support Department at support@qualys.com.

A new release of QualysGuard®, Version 6.23, will be available in production in the US on Tuesday, December 13th 2011 and in the EU on Thursday, December 15th 2011. This release is completely transparent to users and will require no scheduled downtime.

 

QualysGuard 6.23 includes a number of API enhancements. This notification provides an early preview of these API enhancements, allowing you to make any changes to automated scripts or code that utilize the following APIs:

 

 

Knowledge Base APIV2: Vendor and Product Info Included in XML Output

The KnowledgeBase API V2(/api/2.0/fo/knowledge_base/vuln/?action=list) allows API users to download a list of vulnerabilities from Qualys’ KnowledgeBase. Authorized QualysGuard users have the ability to download vulnerability data using the KnowledgeBase API V2. Please contact Qualys Support or your sales representative if you would like to obtain authorization for your subscription.

 

 

Deprecated Control Flag Added to Compliance DTDs

As part of an effort to improve and simplify the technical controls used in the Policy Compliance application, several controls have been deprecated and new controls are available to replace them. Using the Policy Editor within the QualysGuard user interface users can add only the latest, non-deprecated controls to their policies. While editingpolicies, users have the option to replace deprecated controls with the replacement controls.

 

Support for Service Identifier in Oracle Records

With this release, API users can identify an Oracle database instance within an Oracle authentication record using an Oracle service name or a SID. The Oracle authentication API (/api/2.0/fo/auth/oracle/) is used to create, edit and list Oracle authentication records.

 

API Support for IPv6 Asset Management and Scanning

IPv6 Support is a subscription-level option that must be enabled for your subscription by Qualys Support in order to start managing and scanning IPv6 hosts. Please contact Support if you would like this feature to be enabled for your subscription. Using the new IPv6 Asset API (/api/2.0/fo/asset/ip/v4_v6/) Manager users have the ability to manage IPv6 mapping records. Each IPv6 mapping record associatesone IPv4 address with an IPv6 address in your network.

 

IPv6 Address Added to Host List Detection DTD

The host list detection DTD (host_list_vm_detection_output.dtd) includes a new, optional <IPV6> element. The <IPV6> element has been added to the <HOST> section.For each host included in host list detection output, the host IPv6 address appears when the IPv6 feature is enabled for the subscription and the IPv6 address is defined in an IPv4 to IPv6 mapping record. Please contact Qualys Support or your sales representative ifyou would like to enable this feature for your subscription.

 

 

               

Full details regarding these XML changes are available within the Qualys community at: https://discussions.qualys.com/docs/DOC-3173

 

 

API release notes will be available to customers from within the Resources section of your QualysGuard account. To receive more information on QualysGuard 6.23, please visit the Qualys Community at https://community.qualys.com or contact your Technical Account Manager or Qualys' Technical Support Department at support@qualys.com.

 

Filter Blog

By date: By tag: