The Qualys Scanner CDF collects information about Qualys scans executed in the past user-set days, including all CVEs related to those vulnerabilities, and ingests them into the ThreatQ platform.

The integration provides the following feeds:

• Qualys Scanner - ingests vulnerabilities, indicators and assets from Qualys scans
• Qualys Unrelate Patched QIDs (supplemental) - unrelates patched vulnerabilities and indicators of type CVE from assets
• Qualys Get TQObjects (supplemental) - retrieves objects from ThreatQ Threat Library.
• Qualys Scanner CVE Knowledge Base (supplemental) - queries the Qualys database to obtain more information about a vulnerability
• Qualys Scanner Query QIDs (supplemental) - submits vulnerabilities batches identified by QID (Qualys ID) to Qualys Scanner CVE Knowledge Base feed

The integration ingests the following system objects:

• Assets
• Indicators
• Vulnerabilities