Top 10 of 2012 from Qualys Community

Robert Dell'Immagine

Here are the most popular and most viewed blog posts, discussions, new product features, technical documents and videos that were contributed, read, updated, and commented on in 2012 by the Qualys Community of security professionals.

Many thanks to all the Qualys Community members and site visitors for building out the reference library and active conversations that comprise Qualys Community!

Top 10 Blog Posts

  1. Mitigating the BEAST attack on TLS
  2. Lessons Learned from Cracking 2 Million LinkedIn Passwords
  3. Are you ready for slow reading?
  4. TLS Renegotiation and Denial of Service Attacks
  5. CRIME: Information Leakage Attack against SSL/TLS
  6. How I Knocked Down 30 Servers from One Laptop
  7. Protocol-Level Evasion of Web Application Firewalls
  8. Passing the Internal Scan for PCI DSS 2.0
  9. Android Security Evaluation Framework: ASEF
  10. New Java 0-Day Disclosed

See the most current blog posts.

Top 10 Discussion Threads

  1. How to enable TLS 1.1 & 1.2 on OpenSSL & SSLv3.0/TLSv1.0 Protocol Weak CBC Mode Vulnerability
  2. PCI Failure for CVE-2011-3389 (BEAST Attack) & BEAST vulnerability detection
  3.’s own Apache SSL Config Directives
  4. Web Server Vulnerable to Redirection Page Cross-Site Scripting Attacks
  5. How to create a Linux user
  6. Hidden RPC services error
  7. Anybody notice an uptick in "NetBIOS Shared Folder List Available" vulnerability?
  8. FIPS-Ready checks
  9. FTP
  10. Mitigating WAS QID 150085 Slow HTTP POST Vulnerability on Apache

See the most current discussion threads.

New Product Features in 2012

  1. QualysGuard 7.7
  2. Introducing QualysGuard Dynamic Asset Tagging and Management
  3. QualysGuard 7.6
  4. QualysGuard 7.5
  5. QualysGuard 7.4
  6. QualysGuard 7.3
  7. QualysGuard 7.2
  8. QualysGuard 7.1
  9. QualysGuard 7.0
  10. QualysGuard WAS 2.4
  11. QualysGuard WAS 2.3.2
  12. QualysGuard WAS 2.3.1
  13. QualysGuard WAS 2.3
  14. QualysGuard MDS Enterprise Edition 2.1
  15. Automatic Scanning is now part of BrowserCheck Business Edition
  16. Safe Browsing with Qualys BrowserCheck

Top 10 Technical Documents

  1. BrowserCheck FAQ
  2. QID 90780 FAQ: Microsoft ASP.NET ValidateRequest Filters Bypass Cross-Site Scripting Vulnerability
  3. Reference: QualysGuard Virtual Scanner Appliance
  4. Verify QID 38140 – SSL Server Supports Weak Encryption Vulnerability
  5. QualysGuard API Sample Code
  6. How is QID 38142 – SSL Server Allows Anonymous Authentication Vulnerability detected?
  7. How does vulnerability scanning work?
  8. How does UDP port scanning and service detection work?
  9. How does QualysGuard mapping work?
  10. UPDATE: QID 38171 “SSL Certificate – Server Public Key less than 2048 bit”
  11. Bonus document: QualysGuard Virtual Scanner Appliance: Platform Qualification Matrix

See LOTS MORE support articles and how-to’s in the Help Center.

Top 5 Videos

  1. QualysGuard Vulnerability Management Video Series
  2. QualysGuard Policy Compliance Video Series
  3. QualysGuard Web Application Scanning Video Series
  4. QualysGuard Malware Detection Service Enterprise Edition Video Series
  5. Best Practice Videos

Qualys wishes you a happy, productive, and secure 2013!

Show Comments (1)


Your email address will not be published. Required fields are marked *

  1. Hi, this is a very interesting web page and I have enjoyed read­ing many of the arti­cles and posts con­tained on the web­site, keep up the good work and hope to read some more inter­est­ing con­tent in the future. Thank you so much.