Hi Team, Currently working with a customer for SecOps VR implementation. SIR is not implemented and not a purchased mdule as of now. The Vulnerability scanner details shared are as below along with the available integrations.1. Trend Micro - Incident...
Scenario 1:On the Remediation task need to create a UI action button , on click of UI action 2 buttons (ok,cancel) should be visible. On click of Ok, it should chnage a substate field value .Scenario 2:In the Ui page few fields of records should be p...
Hello, I would like to use a script rule to calculate risk ratings for VITs. Does someone has an example of a script to get me started? I'm not sure how the function should look like and which objects are available and what to return.
Hello here, After last upgrade of SIR we are facing issues with attachments preview in activity log. If I drag and drop to record, all is working fine. Using upload attachment functionality is not generating image preview. Not really sure what happen...
Hello,Is there any way to process the records from a table batch wise in a flow or a subflow?In my case I have a flow which is internally calling a subflow in which I need to fetch the records from a table e.g. "sn_si_incident" and in one go I should...
This question has been asked before. I am not asking for a solution.Just wondering if the Re-open feature is there on the Security Incident Response (SIR) roadmap for Security Incidents? Trying to figure out if its worth developing or will be availab...
Hello, we have an issue where we had deleted several Remediation Tasks and it has left a large number of VIT's in an Under Investigation state. Because of that Assignment Rules will not apply to the VIT's. Is there a way to change the state of a VIT ...
Hi, Doing some testing on VR Solution Mgmt I was wanting to get the preferred solution to populate for our Vulnerabilities and VIT's.Looking at the documentation, they mention a system property sn_vul.latest_solutions_fieldDo we know what type of pro...
Hello, We are using Qualys Service Integration for VR (Qualys Integration for Security Operations: v12.1.1) I am looking at modifying the API to exclude non-running kernels and superseded patches. looking at this article, and Qualys API documentation...
Hi everyone,I am trying to build a report to show case the metrics definition (for example: Mean time to triage/acknowledge). I used the performance analytics to generate this report because we need to showcase the target value. The issue which is ha...
Hi all,We are implementing MITRE framework. We tried configuring auto extraction rule but they dont seem to be working. Has anybody implemented that or can share some insights. That will be really helpful @andy_ojha
Qualys web application scan has reported a Low vulnerability which was not synched with snow.We couldn't find any VIT record created for this vulnerability.Do we have any specific criteria to create VIT records
We want to create new field in CVIT form and import the details from OOB Prisma integration. So we want to use that field in assignment rules. So is there way to include that field mapping without touching the OOB script include. Any suggestions
How to Restrict Qualys Creating CI's in Unclassed Hardware, we have a requirement to partially stop creating the CI in Unclassed. is there a way to disable? Thanks in advanceRam
Requesting feedback to see if anyone has changed the IRE default for "Operation Status" (which is "Operational") for Vulnerability Response create CIs. 1) Qualys scans a server and detects a vulnerability.2) VIA the SN VR API we consume that vulnerab...
