Qualys WAS

Article summary

Did you find this summary helpful?

Thank you for your feedback

Qualys WAS is a web application scanning tool for identifying vulnerabilities in web applications.

Types of Assets Fetched

This adapter fetches the following types of assets:

Host Name or IP Address (required) - The hostname or IP address of the Qualys WAS server.
User Name and Password (required) - The credentials for a user account that has permission to fetch assets. For more information, see Get Started>Qualys user account.
Verify SSL - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
HTTPS Proxy User Name (optional) - The user name to use when connecting to the value supplied in Host Name or IP Address via the value supplied in HTTPS Proxy.
HTTPS Proxy Password (optional) - The password to use when connecting to the server using the HTTPS Proxy.

To learn more about common adapter connection parameters and buttons, see Adding a New Adapter Connection.

Qualys WAS

Axonius must be able to communicate with the value supplied in Host Name or IP Address via the following ports:

The following permissions are required:

Make sure the WAS module is enabled
The user account needs to have these permissions: Access Permission “API Access”
The data fetched only includes findings in the user’s scope

Supported from Axonius version 6.1

Was this article helpful?

Table of contents