Custom Assessment and Remediation

Our custom assessment and remediation software helps you measure known and unknown risks, prioritize and communicate risk across vulnerabilities, and patch any device anywhere.

De-risk open-source components and first-party applications

Customize with

50+ scripts

from the Qualys library to de-risk your unique environment


50% faster

for zero-day threats with orchestrated workflows

Consolidate to

1 agent

and one platform for assessment, remediation, and compliance

Detect and remediate vulnerabilities across your unique environment with customized precision

Every organization faces unique risks to its environment, especially when it comes to first-party applications and open-source components. Consolidate point solutions and bring your own logic to identify and remediate unique risks.

With Qualys Custom Assessment and Remediation (CAR), we can quickly create reusable custom detections and remediations, including deploying custom configurations and applications. Since CAR is natively integrated into our Qualys Platform, we can leverage our existing security processes for vulnerability management and secure configuration rather than build ad-hoc processes when faced with urgent threats.

Gonz Gonzales


Make it simple

Create custom assessment and remediation scripts utilizing a centralized repository of scripts, created and maintained by the Qualys research team. The Qualys Script Library contains use case-based scripts written in PowerShell, Shell, Python, Lua, or Perl, and covers a wide range of dynamic categories.

Expand the Enterprise TruRisk Platform with your own logic

Execute custom scripts and controls anywhere a Qualys Cloud Agent exists. Leverage a library of reusable scripts and security controls using the preferred scripting language for the task. Scripts are trackable within your existing Qualys vulnerability and compliance reports with the assignment of custom Qualys IDs (QIDs) and Control IDs (CIDs).

Powered by the Enterprise TruRiskTM Platform

The Enterprise TruRisk Platform provides you with a unified view of your entire cyber risk posture so you can efficiently aggregate and measure all Qualys & non-Qualys risk factors in a unified view, communicate cyber risk with context to your business, and go beyond patching to eliminate the risk that threatens the business in any area of your attack surface.

Qualys TotalCloud™ Cybersecurity Asset Management Dashboard

Explore CAR Product Tours

Create and execute scripts for custom detection and response measures


Qualys CAR lets you create custom logic for unique security needs. With the right script, any use case can be solved.

What does it contain?

  • Custom Script creation
  • Support for multiple scripting languages
  • Implementing Safeguards around Script Creation and Execution
  • Script execution options
  • Maintaining Activity logs

Integration with VMDR - Bring your own QID!

Enhance VMDR with vulnerabilities unique to your environment with Custom QIDs.


Qualys CAR lets you create custom QID under VMDR.

What does it contain?

  • Custom QID as a script type
  • Vulnerability detection for Custom QID
  • Viewing Vulnerability Results for Custom QID

Leverage script library

Utilize our script repository to boost security and ensure compliance with industry standards.


Qualys CAR features a centralized repository of pre-defined scripts by research analysts for various use cases.

What does it contain?

  • Script Library overview
  • Category based search for required scripts
  • Importing scripts from CAR Script Library

Reduce the risks unique to your environment with custom solutions.

Try CAR at no cost for 30 days

By submitting this form, you consent to Qualys' privacy policy.

Email or call us at 1 (800) 745-4355