• Qualys WAS API Client - PrevQAPI

    In the holiday spirit PrevSec is sharing PrevQAPI - a free WAS API command line interface  that enhances the powerful WAS API with additional client-side features. PrevQAPI simplifies some of the most common ...
    Will Bechtel
    created by Will Bechtel
  • New WAS QID 150126 for Links With High Resource Consumption (HTTP Time Bandit)

    Qualys has released a new WAS QID, 150126, to detect links with high resource consumption. Description: Initially presented at DEFCON 21 by Qualys researchers Tigran Gevorgyan and Vaagn Toukharian, HTTP Time Band...
    Steve McBride
    created by Steve McBride
  • New WAS QID 150142 for Virtual Host Discovery

    Qualys WAS now includes a new Information Gathered QID, 150142, for Virtual Host Discovery using HOST headers in HTTP(s) requests.   Description: Web servers commonly serve multiple applications, configured as ...
    Steve McBride
    last modified by Steve McBride
  • How Does Qualys Risk Rank Web Application Vulnerabilities?

    Thank you to Boyd White for his hard work getting this all together.       How Does Qualys Risk Rank Web Application Vulnerabilities?   Every web application Qualys Identifier (QID) is assigne...
    fmc
    last modified by fmc
  • New WAS QID 150134 for Bash Bug ShellShock

    Hello All, Please read this complete post regarding the new WAS QID 150134 for Bash Bug ShellShock. This QID will go live tonight (09/29/2014). ***PLEASE NOTE: We will be adding additional checks within the ...
    fmc
    created by fmc
  • New WAS QID - 150129 Insufficient Session Protection/Regeneration - Details

    New WAS QID - 150129 Insufficient Session Protection/Regeneration - Details     Hello,   By the end of day, Tuesday 9/2/2014, Qualys will release a new QID for WAS. It is QID 150129 for Insufficient ...
    fmc
    created by fmc
  • Two new WAS QIDs - 150114 Arbitrary File Upload Vulnerability and 150128 SSL Downgrade

    Hello,   We will soon be releasing two new WAS QIDs contained within the WAS-3.6.33-1 patch. The information on these two new QIDs is as follows:   QID 150114 Arbitrary File Upload Vulnerability   Wh...
    fmc
    last modified by fmc
  • Apache Struts Vulnerability and Detection Reference

    Hello,   Within VM the scanner is designed to find vulnerabilities in known applications. It will not run a full web crawler against the target web application similar to a dedicated web application scanner. For...
    fmc
    created by fmc
  • False positive | Unencoded characters

    Payload sf_guard_user[group_id]=%22'%3E%3Cqss%20%60%3b!--%3D%26%7b()%7d %3E   #1 Response comment: A significant portion of the XSS test payload appeared in the web page, but the page's DOM was not modified as e...
    Jan Cinert
    last modified by Jan Cinert
  • False positive | Reflected Cross-Site Scripting (XSS) Vulnerabilities

    Payload "'><qss%20a=@REQUESTID@>   #1 Response comment: A significant portion of the XSS test payload appeared in the web page, but the page's DOM was not modified as expected for a successful exploit. T...
    Jan Cinert
    last modified by Jan Cinert
  • False positive | Reflected Cross-Site Scripting (XSS) Vulnerabilities

    Payload '%20onEvent=@REQUESTID@%20   #1 Response comment: A significant portion of the XSS test payload appeared in the web page, but the page's DOM was not modified as expected for a successful exploit. This res...
    Jan Cinert
    last modified by Jan Cinert
  • False positive | Cookie Does Not Contain The "HTTPOnly" Attribute

    #1 Response   __utmb=250288278.1.10.1383242505; expires=Thu Oct 31 11:31:45 2013; path=/; domain=.agriclub.cz; secure     That cookie is created by ga.js script. That cookie is not created by Set-Cooki...
    Jan Cinert
    created by Jan Cinert
  • False positive | Cookie Does Not Contain The "secure" Attribute

    #1 Response   __utmc=250288278; path=/; domain=agriclub.cz     Chrome Developer Tools show that the cookie has a secure flag on.   More information: That cookie is created by ga.js script with a...
    Jan Cinert
    created by Jan Cinert
  • Scanner Appliance not available for sub-user's in WAS

    Just an FYI for everyone using internal scanner appliances for Web App Scanning:   In order for a sub-user (specifically user's within a business unit) to have access to a scanner appliance in the WAS module, th...
    Patric Fox
    created by Patric Fox
  • RegEx for avoiding documents

    In case you need to exclude URL's in a WAS scan based on file extensions...   We're currently scanning a large CMS-based site and I noticed that there were a large number (552) of documents (.pdf, .doc, etc) tha...
    Karl Bernard
    last modified by Karl Bernard