Skip to main content

Vulnerability Management - Qualys (Job)

This Playbook is part of the Qualys Pack.#

Deprecated

Use the Vulnerability Management - Qualys (Job) - V2 playbook instead.

Deprecated. Use the Vulnerability Management - Qualys (Job) - V2 playbook instead. Use the latest Qualys report to manage vulnerabilities.

This playbook runs as a job, and by default creates incidents of type "Vulnerability" based on assets and vulnerabilities. The incidents are created from the latest version of the report determined by the report timestamp. You can define the minimum severity (minSeverity) that incidents are created for. Duplicate incidents are not created for the same asset ID and QID.

This playbook is a part of a series of playbooks for Qualys vulnerability management and remediation. For this series of playbooks to run successfully, create a Job and do the following:

  1. Assign this playbook to the Job
  2. Enter the Qualys XML report name into the "Details" field
  3. Associate the Vulnerability type incident to the Vulnerability Handling - Qualys playbook.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

This playbook does not use any sub-playbooks.

Integrations#

  • Qualys

Scripts#

  • QualysCreateIncidentFromReport
  • Set

Commands#

  • qualys-report-list
  • qualys-report-fetch
  • closeInvestigation

Playbook Inputs#


NameDescriptionDefault ValueRequired
QualysReportTitleThe report title as it appears in Qualys.
Has to be in XML format.
incident.detailsRequired
MinSeverityThe minimum Qualys severity (1 -5) to create incidents for.3Required

Playbook Outputs#


There are no outputs for this playbook.

Playbook Image#


Vulnerability Management - Qualys (Job)