Qualys Cloud Platform 10.25 (VM/PC) API notification 2

Jeff Leggett

A new release of Qualys Cloud Platform 10.25 (VM/PC) includes updated APIs which is targeted for release in January 2024. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API.

What’s New?
New API: Domain V2 API

/api/2.0/fo/asset/domain/
With this release, you can now delete/bulk delete domains using the new API. Along with delete operation, you can also perform the following domain operations using this API.

Addition of QDS Report Filter in Host-Based Scan Report Template
/api/2.0/fo/report/template/scan/
In addition to including TruRisk details (ARS, ACS, QDS) in your report, you can now use the QDS report filter to further refine the detection data in your report. QDS report filter provides you the ability to filter the detection data based on the QDS score. The following two QDS filter parameters are now available for you to use to display detections in the report based on the selected QDS score filter.

Support for Adding TCPS Configuration to Oracle Authentication Records
/api/2.0/fo/auth/oracle/
You can now add a TCPS configuration while creating or editing the Oracle Authentication records. Once you have configured the TCPS connection protocol for your Oracle database, then you can add the same to the Oracle authentication records in the Qualys Platform.

KnowledgeBase: Addition of New technology Tag for SCA QID
/api/2.0/fo/knowledge_base/vuln/?action=list/
With this API, you can now view the QIDs for detection of vulnerabilities through technology type like Java, Python in the Technology field associated with the SCA QID. Single QID can have multiple technology types.

KnowledgeBase: List the QIDs Based on the Code Modified Date
/api/2.0/fo/knowledge_base/vuln/?action=list/
In this release we have introduced the following two new parameters which displays the QIDs that have code modified date. You can pass the date to view the modified dates of the QIDs. The code modified date is displayed only for the QIDs that have the record. If you consider both the
input parameters, you can view all the QIDs within the specified dates.

KnowledgeBase: Add CVE Endpoint to Gather QID details
/api/2.0/fo/knowledge_base/vuln/index.php?action=list
This release allows the user to confirm if a specific CVE is present in the Qualys KnowledgeBase and to view the associated QIDs. It allows you to gather all the QIDs that exactly matches the given CVE. You can view the QIDs that exactly matches the given CVE. This allows the capability to query the Qualys KnowledgeBase from threatConnect. This helps to filter the QIDs that exactly matches the given CVE for better query results.

Support for Adding Resource ID in Hitachi ID PAM Authentication Records
/api/2.0/fo/auth/postgresql/
/api/2.0/fo/auth/sapiq/
/api/2.0/fo/auth/unix/
/api/2.0/fo/auth/windows/
/api/2.0/fo/auth/greenplum/

We have added support to provide resource ID information while creating or updating Hitachi ID PAM authentication records. This enhancement addresses the error that occurs during authenticated scans using Hitachi ID PAM authentication records due to the absence of resource ID information.

The release notes are here: https://cdn2.qualys.com/docs/release-notes/qualys-cloud-platform-10.25-api-release-notes.pdf

Share your Comments

Comments

Your email address will not be published. Required fields are marked *