Qualys Blog

www.qualys.com
Eric Perraudeau

QualysGuard 7.11 New Features

QualysGuard 7.11 will be released in production in the coming weeks and includes enhancements to QualysGuard Vulnerability Management (VM) and Policy Compliance (PC) reports, and API.

Highlights include: ability to rerun a report, new “Host Scan Date” filter and “Vulnerability Fixed On” date filter for the vulnerability scorecard report, and API enhancements.


QualysGuard VM/PC Reports Enhancements

Ability to Rerun a Report: This release introduces the ability to rerun any report in your reports list by selecting “Rerun” from the Quick Actions menu.

Screen Shot 2013-07-26 at 11.28.29 AM

QualysGuard VM Enhancements

New filter options are introduced in the Vulnerability Scorecard Report to better help customers to measure the progress of their Vulnerability Management program. More details about the Vulnerability Scorecard are available here:Continuously Monitor Vulnerability Remediation Performance Across your Organization with QualysGuard v7.8 Vulnerability Scorecards

New “Host Scan Date” filter for the Vulnerability Scorecard Report: This filter allows you to limit which hosts are included in your Vulnerability Scorecard Report based on scan date. For example, only include hosts scanned in the previous month or only include hosts scanned within a selected date range.

New “Vulnerability Fixed On” date filter for the Vulnerability Scorecard Report: This filter allows you to set a timeframe in which you want to count Fixed vulnerabilities. When you display vulnerability counts in your report (by selecting Vulnerability Status on the Display tab) your report will include the total number of Fixed vulnerabilities for each asset group/tag in the report. When counting the total number of Fixed vulnerabilities, we include all vulnerabilities fixed since the start of your subscription. If you’re only interested in seeing the number of vulnerabilities fixed in say the previous quarter or since a certain date, then use this filter to select the timeframe.

Screen Shot 2013-07-26 at 11.30.18 AM

Here’s a look at the date picker used for both filters. As you can see, you have many options.

Screen Shot 2013-07-26 at 11.52.18 AM

QualysGuard API Enhancements

Full details about the API feature in QualysGuard 7.11 can be found here QualysGuard 7.11 API Notification

List of the API enhancements:

  • Enhancements to “/api/2.0/fo/asset/host” API
    • support for asset tags as input parameter for host selection
    • support for asset tags in the XML output
    • support for Qualys Host ID in the XML output when Agentless Tracking is used
    • support for custom page size output
    • “host_list_output.dtd” updated
  • Enhancements to “/api/2.0/fo/asset/host/vm/detection”
    • support for asset tags as input parameter for host selection
    • support for asset tags in the XML output
    • support for Qualys Host ID in the XML output when Agentless Tracking is used
    • “host_list_vm_detection_output.dtd” updated
  • New technology available in Authentication API V2 “/api/2.0/fo/auth”
    • support for Apache 2.2 (IBM http Server 7.x running on RHEL 5.x and 6.x)
    • support for Apache 2.2 (VMWare vFabric Web Server 5.2)
    • support for Microsoft IIS 6.x and 7.x
    • support for IBM WebSphere Application Server 7.0
  • Enhancements to “/api/2.0/fo/auth” API
    • output contains new authentication records mentioned above
    • “auth_records.dtd” updated

Full release notes will be available to customers from within the Resources section of your QualysGuard account.

Release Schedule

For details about the release dates and to subscribe to release notifications by email, please see the following:

Tip: What’s my platform

Leave a Reply