ThreatQ Qualys Scanner Config Driven Feed (CDF)
The Qualys Scanner CDF collects information about Qualys scans executed in the past user-set days, including all CVEs related to those vulnerabilities, and ingests them into the ThreatQ platform.
Description
The Qualys Scanner CDF collects information about Qualys scans executed in the past user-set days, including all CVEs related to those vulnerabilities, and ingests them into the ThreatQ platform.
The integration provides the following feeds:
- Qualys Scanner - ingests vulnerabilities, indicators and assets from Qualys scans
- Qualys Unrelate Patched QIDs (supplemental) - unrelates patched vulnerabilities and indicators of type CVE from assets
- Qualys Get TQObjects (supplemental) - retrieves objects from ThreatQ Threat Library.
- Qualys Scanner CVE Knowledge Base (supplemental) - queries the Qualys database to obtain more information about a vulnerability
- Qualys Scanner Query QIDs (supplemental) - submits vulnerabilities batches identified by QID (Qualys ID) to Qualys Scanner CVE Knowledge Base feed
The integration ingests the following system objects:
- Assets
- Indicators
- Vulnerabilities
