Do we have any solutions from qualys on scanning for vulnerabilities and identifying the misconfiguration on the server less components in AWS like AWS Lambda, API Gateway and Dynamo DB.
Please let know know
Which components do you want to scan? You'd know that Lambda is a service that lets you run code and creates resources. So it's these resources that you should be scanning.
If it's EC2 instances, there are different ways to scan - using scanners, and agents. You could scan RDS instances as well.
What about dynamo DB, API Gate Way and S3 buckets? Is there a way to scan them?
I looked at the KB and Control Library to see if there's anything on DynamoDB, I couldn't find any.
S3 buckets can be monitored and evaluated using the CloudView application.
Here's a video: https://vimeo.com/264526986
Can you scan RDS for compliance or just vulnerabilities? For vulnerabilities, do you know if it supports authenticated or just unauthenticated?
Yes, you can, for both compliance and vulnerabilities. And it supports authenticated scans as well.
That's good news. I'm interested in both SQL Server and Oracle RDS instances. Can Qualys scan both of them?
While I haven't tried scanning a SQL server instance, I believe it should work the way as scanning an RDS instance. You'll need to get the IP address of the instance and add that to Host Assets.
If the instance has a public IP, you could use the Qualys external scanner. However, if it only has a private IP (which is the case almost always), you'll need to use the non-authorized EC2 scanner.
Retrieving data ...