Vulnerability Classification - OS/Midware/Application etc - Qualys

Sam Ogden
Tera Guru

‎08-10-2022 03:50 AM

Hi All,

We have recently gone live with the VR module and currently ingest data from Qualys and MS Defender.

From Qualys I can see in the third party library table we can see vendor and product information as well as a category field.  I was wondering if anyone had managed to use this data to create some classification rules to aid in the assignment of the VIs/Remediation Task.  

Thanks in advance

Sam

Labels:
0 Helpfuls
  • 1,214 Views
5 REPLIES 5

Syed14
Mega Guru
In response to Nash Giacoma

‎11-21-2022 01:38 AM

Hi @Nash Giacoma , 

Yes you can add additional classifications to the set values on the classification rule. The classification field is a string type field with the 'Choice' set as Suggestion (Hence you see the suggestion Icon on the classification rule form).

 

Syed14_0-1669023140672.png

 

The field has choice options similar to any other choice field in the system. OOTB It has only two choices which you mentioned (Platform and Application) but you can create more choice. For example we have added "Hardware" and other choices.

 

Syed14_1-1669023406515.png

 

which appears on the form as a suggestion

 

Syed14_2-1669023441677.png

 

 

Thanks

 

0 Helpfuls