Im a new entry into Qualys. We are planning to use couple of services of Qualys.
One thing that I was wondering is that, the WAS scan report would summarise the vulnerabilities found. But how do we know the lsit of exhaustive tests that were done on the application?
While I know that ther would be huge rule/test repository, but still am curious to know that tests were executed.
Thanks in advance.