Create a custom outbound REST message for Qualys

If needed, you can create your own outbound REST message to send to Qualys.

Before you begin

Role required: web_service_admin

Procedure

  1. Navigate to Vulnerability > Vulnerability Scanning > Scanners.
  2. Locate and open the Qualys scanner.
  3. In the Scanner factory script, modify the parameter that is passed to QualysVulnerabilityScanner to the name of the REST message that you want to use.
    For example, if you created a REST message named MyQualys-REST, the field value is new sn_vul.QualysVulnerabilityScanner("MyQualys-REST").
    Note: The REST message passed to the Qualys vulnerability scanner must be available to the Vulnerability scope.
  4. Click Update.

What to do next

If you have more complex scanning requirements, but still want to use the existing scanner implementation, you can extend the Qualys Vulnerability Scanner that is provided. For example, to change how the REST message is built and sent to Qualys, create a script include that extends QualysVulnerabilityScanner and provide a new implementation for the _buildScanRequest function.