With Qualys Custom Assessment and Remediation (CAR), we can quickly create reusable custom detections and remediations, including deploying custom configurations and applications. Since CAR is natively integrated into our Qualys Platform, we can leverage our existing security processes for vulnerability management and secure configuration rather than build ad-hoc processes when faced with urgent threats.Gonz Gonzales Chief Information Security Officer
at JG Summit Holdings, Inc.
Every organization faces unique risks to their environment, especially when it comes to first-party (also known as homegrown or custom) applications. Ditch the point solutions with Qualys Custom Assessment and Remediation, which allowing organizations to bring their own logic to identify and remediate unique risks. Organizations can consolidate at risk detection, prioritization, and remediation for first-party and third-party applications into one console with ease.
Build custom detection logic using a wide range of popular scripting languages including PowerShell, Python, Lua, Perl, and Shell
Build custom remediation logic to any risk detected in your environment including first party, home grown applications
Leverage Qualys library for pre-defined detection and remediation scripts and templates
Enrich the Qualys out-of-the-box signature library with custom-defined logic for nearly any zero-day threat, risk scenario, and home-grown application
Fully integrated with VMDR Knowledge Base, reporting and dashboards
Fully integrated with Policy Compliance (PC)
Create a comprehensive inventory of open-source components mapped to production assets to:
Add a controlled, deep scan of the entire file system to find all open-source libraries
Create an inventory of all identified open-source libraries and versions
Scan all open source detected libraries against 15K+ open source related new vulnerabilities
Review and prioritize the results withing the familiar VMDR workflows
Create remediation logic and remediate open-source risk from within the same workflows
Run your own logic anywhere the Qualys Cloud Agent is installed. Create a new script or customize a pre-defined one from the Qualys library and run the script on any device that has the Qualys Cloud Agent running.
Establish a central library of reusable scripts and pre-built script templates
Jumpstart script creation with Qualys pre-defined scripts and templates covering a wide range of dynamic categories
Simplify enterprise deployment and use with centralized management and distributed execution of scripts and controls wherever a Qualys Cloud Agent resides
Choose from a wide range of popular scripting languages including PowerShell, Python, Lua, Perl, and Shell. No custom scripting language or packaging methods required!
Integration with enterprise script repositories such as GitHub for use with existing script management tools
Support for testing and approval workflows to ensure safe deployment of scripts where needed