You can create a custom script and select the assets that you want to include in your scope. You can execute the custom script on assets across any of the Qualys apps that you have subscribed to.
You can also import a script. For information on importing scripts, refer to Exporting and Importing Scripts.
According to the CAR Data Retention policy, a script is automatically deprecated if it is not modified or executed for 6 months. Additionally, a deprecated script is automatically deleted after 7 days as a part of a scheduled job.
1. Navigate to the Scripts > Scripts sub-tab and then click Create > New Script from the drop-down menu.
2. In the Basic Information page, enter a name and description for the script.
3. From the Severity drop-down list, select the severity and then click Next.
The severity level defines the criticality of the script. Select a value from 1 to 5.
4. In the Script Details page, do the following:
a. Select the Platform (Unix, Windows or Linux) and then select the type and the appropriate category for the script from the provided drop-down menus.
b. Select the Scripting Language, Type and Category from the respective drop-down lists.
c. Specify the threshold value in seconds, minutes or hours. The threshold value lets you specify how long a script must be in execution.
The threshold value for all Windows assets, Linux assets and Unix assets is 3600 seconds. The default value is 300 seconds.
d. In the Scripts section, select one of the following options:
1. Test the script on assets. This is an optional step.
For more information, refer to Testing Scripts.
2. Execute the script. A job is created when you execute a script. Once the job is complete, you can click on Job Details to view the script output on each asset.
For more information, refer to Executing Scripts.
Note: Previously, Scripts used to have Assets and tags that are no longer visible on Script Details.
Reviewing and Approving Scripts