As a follow-up to our recent major release Qualys Web Application Scanning (WAS) 4.3 and our last release of WAS 4.4, we have added a few new features, tweaks and clarifications in WAS 4.5 to allow further optimizations of scans as well as deliver some optimizations to Progressive Scanning in particular. Customers can also now receive more comprehensive CSV reporting on their scans. This allows customers to continue to deliver targeted web application security metrics to all the stakeholders while ensuring a successful web application security program meets the protection of all organizational demands.

Continue reading …

Qualys Malware Detection (MD) provides detailed malware infection reports provided along with infected code for remediation on your web applications. The new Qualys MD 2.8 release now allows customers the flexibility of having scans run hourly!

Continue reading …

As a follow-up to our recent major release WAS 4.3, we have added a few new features, tweaks and clarifications in WAS 4.4 to allow further customizations of scans. Customers can also now receive clearer and enhanced feedback on the behavior and coverage of their scans. This will also allow customers to continue to deliver targeted web application security metrics to all the stakeholders while ensuring a successful web application security program meets the protection of all organizational demands.

Continue reading …

Qualys MD (Malware Detection) provides detailed malware infection reports provided along with infected code for remediation on your web applications. The new Qualys MD 2.7 release provides numerous feature requests and enhanced functionality as well as flexibility.

Continue reading …

It’s important to customize your web application scans just as much as your web applications. We get that. With Qualys WAS 4.3, organizations now have the ability to easily further customize their scans based upon their web apps and specific properties thereof. Customers can also now received clearer and enhanced feedback on the behavior and coverage of their scans. This will also allow customers to continue to deliver targeted web application security metrics to all the stakeholders while ensuring a successful web application security program meets the protection of all organizational demands.

Continue reading …

Qualys MD (Malware Detection) provides detailed malware infection reports provided along with infected code for remediation on your web applications. The new Qualys MD 2.6.4 release provides better flexibility with notifications and scheduling.

Features highlights include: Email Notification Management Feature and Transfer Schedule Functionality

Continue reading …

Getting accurate and timely information about the security posture of all web applications is a big challenge for most organizations.  It can be difficult to ensure that up to the minute vulnerability information that is targeted to the right audience is delivered on time and consistently across all stakeholders.  With Qualys WAS 4.2, organizations now have the ability to easily deliver targeted web application security metrics to all the stakeholders including the CSO, application owners, quality assurance personnel and developers.  Qualys WAS 4.2 combines the power of report templates to target specific audiences with the metrics they need, with the consistent delivery of scheduled reporting to enable the complete automation a successful web application security program needs to ensure the protection of all an organizations web properties.

Continue reading …

Qualys Web Application Scanning (WAS) has added a new detection that will provide the most comprehensive identification of the Shellshock vulnerability across all of your web applications. With the ability to crawl and identify even non-standard directory locations within your web application, Qualys WAS will deliver the most accurate, detailed and reliable form of automated ShellShock detection for web applications. ShellShock is a wide-reaching vulnerability with multiple attack vectors. If you use any form of Linux or Unix machines in your network you are likely to have the vulnerability.  We have released a new QID (150134) for WAS specifically for this purpose.

Continue reading …