• ServiceNow and Qualys feedback

    Qualys Community,   I have heard within my organization about Service Now maybe coming in the next year or so.  I would like for the vulnerability management team to get in on the ground floor.  I woul...
    Rusty Qualyz
    last modified by Rusty Qualyz
  • HTTP vs HTTPS for a site

    If i configure a site as specifically HTTPS does the scanner check to see if the site also listens on HTTP ?     The same the other way around ?    I'd almost expect the site to scan on HTTP...
    Andrew Craick
    last modified by Andrew Craick
  • Groovy Script to Tag Assets with No Last VM Scan date

    Hi Community Wondering if anyone can help me with groovy script code to tag assets that have the following. - specific asset tag already applied to assets - no lastvmscandate. The asset search query i am using is&...
    Michael Fennell
    last modified by Michael Fennell
  • vulnerability.status question

    It comes in four categories I am posting my assumed thoughts on what they mean, can you confirm or correct me?   Active - Are these ones that still exist, not new...so have existed in more than one scan?  ...
    John Sponheimer
    last modified by John Sponheimer
  • New Detections for CVE-2019-14287

    QID 197665 : Ubuntu Security Notification for Sudo Vulnerability (USN-4154-1) QID 177379 : Debian Security Update for sudo (DSA 4543-1)   Status: Released in VULNSIGS-2.4.725-2 Note: More QIDs to follow as ven...
    Robert Dell'Immagine
    last modified by Robert Dell'Immagine
  • Reporting Question -- csv files

    I'm getting a csv file that is essentially a dump of the vulnerability report.  For some reason, every line is trailed by 6,509 commas.  Can somebody tell me why?  Is there a way to get the report witho...
    Chris Knox
    created by Chris Knox
  • Dashboard Toolbox - VM DASHBOARD BETA: Security Notification for Sudo Vulnerability (CVE-2019-14287)

    This page contains information to create a CVE-2019-14287 QID VM Dashboard leveraging data in your Qualys Vulnerability Management subscription.    As of this posting, the following QIDs are associated ...
    DMFezzaReed
    last modified by DMFezzaReed
  • Is anyone else effected by the Software section not being populated?

    Hello Qualys Community,   We are using the Remediation Rules to assign work and part of our rules depends on the Software Section of the QID.  Recently this section is not populated for the following QIDs: ...
    Rusty Qualyz
    last modified by Rusty Qualyz
  • Dashboard Toolbox - VM DASHBOARD BETA: Dashboard Menu Right-Click Enabled

    October 2019 VM DASHBOARD BETA: Feature Update Information  Vulnerability Management Dashboard Menu - Right Click Enabled The right-click menu of Windows is perhaps the most widely used feature of the operating s...
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - VM DASHBOARD BETA: Focus on Detection Age 30-60-90-180-180+ Open/Fixed

    This page contains information to create a Detection Age 30-60-90-180-180+ Open/Fixed VM Dashboard leveraging data in your Qualys Vulnerability Management subscription.  This dashboard is part of the New VM ...
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - How To - Exporting Widget to json

    Question:  How do I export a widget to a json file? Answer:  Exporting a widget to a json file can be completed in five (5) mouse clicks:   Mouse over the widget to be exported....
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - How To - Importing Widget from json

    WARNING:  At this time, Dashboard and Widget JSON files are not interchangeable between application dashboards, meaning AssetView json files may only be used in AssetView and Vulnerability Management json files m...
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - How To - Exporting Dashboard to json

    Question:  How do I export a dashboard to a json file? Answer:  Exporting a dashboard to a json file can be completed in five (5) mouse clicks:   Click the Gear icon Select 'Export t...
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - How To - Import a Dashboard json

    WARNING:  At this time, Dashboard and Widget JSON files are not interchangeable between application dashboards, meaning AssetView json files may only be used in AssetView and Vulnerability Management json files m...
    DMFezzaReed
    last modified by DMFezzaReed
  • Dashboard Toolbox - New Vulnerability Management (VM) Dashboard BETA

    The New Vulnerability Management (VM) Dashboard BETA program is not intended for production use, and its content is subject to modification without notice.  If you have any questions regarding its conte...
    DMFezzaReed
    last modified by DMFezzaReed
  • Reporting Toolbox - Trust, but Verify: Focused Search Lists v1.5

    This page contains a number of reporting search lists that when added to a routine reporting cycle will help to support a successful Vulnerability Management program. Adding these focused search lists to your rou...
    DMFezzaReed
    last modified by DMFezzaReed
  • Is there a way to get the last used date for a software installed?

    Hi All,   Is it possible to obtain an indication on the last date of use of the/a software installed on a machine with Cloud Agent? Looking at the option in the Global IT Asset Inventory Module seems that this t...
    giacomor
    created by giacomor
  • Installation Date Qualys Agent

    Good day Qualys Community,   Does anyone knows how to obtain the date when the Qualys agent is installed on a machine? I haven´t figured if this is possible.   Thanks for the support!!
    Mario Camarena
    created by Mario Camarena
  • Website ADA Compliance Checker

    Does Qualys have a ADA Compliance Checker report profile or something that rates how compliant it is with Section 508, the Americans with Disabilities Act (ADA), and the 21st Century Communications and Video...
    Sam Friday
    last modified by Sam Friday
  • Grade capped to "B" due to weak DH parameter

    Hi,   Ssltest reports "This server supports weak Diffie-Hellman (DH) key exchange parameters. Grade capped to B". Certificate is backed by BigIP F5, which is limited to 1024 DH primes but is not subject to the ...
    Olivier BOËL
    last modified by Olivier BOËL