Import Third-Party Assets API
This API is used to import Third-Party assets into your CSAM account. It is introduced only for the Third-Party asset source - Webhook.
Before You Begin
- Before importing the Third-Party assets, create the "businessAppId" using the 2.0/upsert/am/businessapp/metadata API.
- The values mentioned in the "identityAttributes" list except "qualysAssetId", "instanceUuid", and "instanceUuidSource" must be the same as mentioned in the "coreAttributes" list.
Sample - Import Third-Party AssetsSample - Import Third-Party Assets
API Request
curl --location --request POST
'<qualys_base_url>/rest/2.0/am/connector/asset/data/sync' \
--header 'Authorization: Bearer <JWT Token>' \
--header 'Content-Type: application/json' \
--data-raw '<JSON payload>'
Sample JSON Payload (without values)
{
"connectorMetaData": {
"requestId": "string",
"assetCount": "integer",
"source": "string",
"connectorUuid": "string"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "string",
"sourceNativeKey": "string",
"instanceUuid": "String",
"instanceUuidSource": "String",
"hostName": "String",
"netBiosName": "string",
"fqdn": "String",
"macAddress": [
"string"
],
"ipAddress": [
"String"
],
"serialNumber": "String",
"hardwareUuid": "string",
"networkUuid": "String"
},
"coreAttributes": {
"lastLoggedOnUser": "String",
"operatingSystem": "String",
"hostName": "String",
"address": "String",
"dnsName": "String",
"biosInfo": {
"biosDescription": "String",
"lastBoot": "date",
"manufacturer": "String",
"totalMemory": "integer",
"timeZone": "String",
"model": "String",
"serialNumber": "String",
"biosAssetTag": "String",
"hardwareUuid": "String"
},
"netBiosName": "String",
"isContainer": "boolean",
"fqdn": "String",
"domain": "String",
"osVersion": "String",
"osArchitecture": "String",
"domainRole": "String",
"processor": {
"description": "String",
"speed": "float",
"numberOfCpu": "integer"
},
"ports": [
{
"port": "Integer",
"protocol": "String",
"detectedService": "String",
"description": "String",
"firstFound": "Date",
"lastUpdated": "Date"
}
],
"networkInterfaces": [
{
"interfaceName": "String",
"macAddress": "String",
"address": "String",
"gatewayAddress": [
"String"
],
"dnsAddress": [
"String"
],
"hostName": "String",
"ipv4Address": [
"String"
],
"ipv6Address": [
"String"
],
"type": "String",
"networkUuid": "String"
}
],
"softwares": [
{
"name": "String",
"version": "String",
"installedDate": "date",
"lastUpdated": "date",
"identifier": "String",
"isSystemApp": "boolean",
"isEnterpriseApp": "boolean",
"publisher": "String",
"language": "String",
"type": "String",
"installPath": "String",
"lastUsedDate": "date",
"firstFoundDate": "date"
}
],
"services": [
{
"name": "String",
"description": "String",
"status": "String"
}
],
"volumes": [
{
"name": "String",
"size": "Integer",
"free": "Integer"
}
],
"accounts": [
{
"username": "String"
}
],
"businessMetaData": {
"status": "String",
"environment": "String",
"company": "String",
"department": "String",
"ownedBy": "String",
"managedBy": "String",
"supportedBy": "String",
"supportGroup": "String"
},
"assignedLocation": {
"name": "String",
"street": "String",
"city": "String",
"state": "String",
"zip": "String",
"country": "String",
"latitude": "String",
"longitude": "String"
},
"businessApps": [
{
"businessAppId": "String"
}
],
"containers": [
{
"version": "String",
"numberOfContainers": "Integer",
"numberOfImages": "Integer",
"type": "String"
}
],
"customConnectorAttributes": {
"key": "value"
}
}
}
]
}
Sample JSON Payload with values
{
"connectorMetaData": {
"requestId": "7xxx8pwx7xx",
"assetCount": "1",
"connectorUuid": "2xxxa9a-6xxx-4xx9-8xxx-8xxxxxxxx280",
"source": "WEBHOOK"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "12xxx3",
"serialNumber": "abc-xxxxx9-4xxx-xxxf-bxxx",
"ipAddress": [
"67.x.2xx.xxx","2x4x:4xx:8xxx:a1a:23xe:6xx7:xxc:ax12"
],
"hostName": "test_hostname_xxxxaeb9-4xxx-4xxx-bxx",
"macAddress": [
"AA:5x:5x:xx:33:xx"
],
"hardwareUuid": "3xxxxxb9-4xxx-4xxx-xxx3-axxxxxdc6681",
"fqdn": "test_hostname_366caeb9-4027-458f-b063-
a28b0adc6681",
"netBiosName": "test_hostname_366caeb9-4027-458f-b063-
a28b0adc6681",
"sourceNativeKey": "TEST74"
},
"coreAttributes": {
"dnsName": "DNS name Test",
"hostName": "test_hostname_366caeb9-4027-458f-b01",
"operatingSystem": "Microsoft Windows 7 Professional",
"netBiosName": "test_hostname_366caeb9-4027-458f-b063-
a28b0adc6681",
"lastLoggedOnUser": "root",
"address": "xx.7.xx.1xx",
"fqdn": "test_hostname_366caeb9-4027-458f-b063-
a28b0adc6681",
"isContainer": "true",
"domain": "Test",
"osVersion": "Windows 7",
"osArchitecture": "32 Bit",
"domainRole": "Test",
"businessMetaData": {
"department": "IT SECOPS",
"managedBy": "John Doe",
"company": "ACME",
"supportedBy": "Service Desk",
"ownedBy": "John",
"environment": "test-environment",
"supportGroup": "Linux Server Team",
"status": "Operational"
},
"assignedLocation": {
"country": "USA",
"state": "sample-state",
"name": "add your address",
"latitude": "33.11876",
"city": "Escondido",
"street": "add your street address",
"zip": "add your zip code",
"longitude": "-117.083405"
},
"biosInfo": {
"hardwareUuid": "366cxxx-4027-xxxf-b063-a2xxxxdc6681",
"timeZone": "+05:30",
"model": "VMware VMware Virtual Platform",
"serialNumber": "VMware-366caeb9-4027-458f-b078",
"totalMemory": 32014,
"biosDescription": "Phoenix Technologies LTD 6.00",
"manufacturer": "VMware",
"lastBoot": "1685361415000",
"biosAssetTag": "No Asset Tag"
},
"processor": {
"description": "Intel(R) Xeon(R) ",
"speed": 2293,
"numberOfCpu": 1
},
"networkInterfaces": [
{
"address": "xx.7.x21.xx1",
"macAddress": "AA:xx:54:xx:33:3E",
"hostName": "test_hostname_366caeb9-4027-458f-b01",
"ipv4Address": [
"67.7.xxx.xxx"
],
"ipv6Address": [
"2001:470:xxxx:a1a:d58e:xxxx:f9c:xxxx"
],
"type": "Client",
"networkUuid": "Test",
"gatewayAddress": [
"10.xx.xx.1"
],
"dnsAddress": [
"15.xx.xx.15"
],
"interfaceName": "AA:51:xx:52:33:xx"
}
],
"customConnectorAttributes": {
"Vendor": "ACME India",
"attested By": "John Doe",
"Managed By Group": "CI Manager",
"Discovery Source": "SG-Qualys",
"Business Unit": "Business Unit Test 1"
},
"businessApps": [
{
"businessAppId": "CSAM2800FEBRELEASE2"
}
],
"volumes": [
{
"name": "C:",
"size": 63897071616,
"free": 31129092096
}
],
"containers": [
{
"version": "3.2",
"numberOfContainers": "1",
"numberOfImages": "3",
"type": "Docker"
}
],
"accounts": [
{
"username": "Administrator"
}
],
"services": [
{
"description": "Qualys Cloud Agent",
"name": "QualysAgent",
"status": "RUNNING"
}
],
"softwares": [
{
"name": "Python 3.10.5 (64-bit)",
"version": "3.10.5150.0",
"installedDate": "1527595015000",
"lastUpdated": "1685361415000",
"identifier": "Microsoft Office
OneDrive$#$19.232.1124.005$#$1",
"isSystemApp": false,
"isEnterpriseApp": true,
"publisher": "Python Software Foundation",
"language": "English",
"type": "Application",
"installPath": "/applocal/Microsoft/",
"lastUsedDate": "1685361415000",
"firstFoundDate": "1527595015000"
}
],
"ports": [
{
"port": 4500,
"description": "authip ipsec keying modules",
"protocol": "UDP",
"detectedService": "authip ipsec keying modules",
"firstFound": "1527595015000",
"lastUpdated": "1685361415000"
}
]
}
}
]
}
Response
{
"message": "All Assets are successfully published for sync.",
"responseCode": "SUCCESSFULLY_PUBLISHED",
"assetsError": {}
}
Third Party Assets API with Webhook Findings
You can provide the 'Webhook Findings' information in the sample payload of this API.
This section is introduced explicitly for ETM customers. We support the 'Vulnerability' and 'Misconfiguration' categories for the payload.
Using this API with the 'Webhook Findings' information, you get the details, such as Vulnerabilities, QDS, and Risk-Contributing findings. Also, if any misconfiguration finding in the form of EOL EOS Software exists, then Open Port detects it and calculates the Risk Score.
Important to Know!
- When the category is VULNERABILITY:
- subCategory must be either Confirmed, Information, or Potential.
- findingStatus must be either New, Active, Fixed, or null.
- severity must be in the range of 1-5.
- When the category is MISCONFIGURATION:
- findingStatus must be either PASS, FAIL, or null.
- severity must be in the range of 1-5.
Sample - Import Third-Party Assets to CSAMSample - Import Third-Party Assets to CSAM
API Request
curl --location --request POST
'<qualys_base_url>/rest/2.0/am/connector/asset/data/sync' \
--header 'Authorization: Bearer <JWT_Token>' \
--header 'Content-Type: application/json' \
--data-raw '<JSON payload>'
Sample JSON for category Misconfiguration (without values)
{ "connectorMetaData": { "requestId": "string", "assetCount": "integer", "source": "string", "connectorUuid": "string" }, "assetData": [ { "identityAttributes": { "qualysAssetId": "integer", "sourceNativeKey": "string", "instanceUuid": "String", "instanceUuidSource": "String", "hostName": "String", "netBiosName": "string", "fqdn": "String", "macAddress": [ "string" ], "ipAddress": [ "ip address format string" ], "serialNumber": "String", "hardwareUuid": "string" }, "coreAttributes": { "lastLoggedOnUser": "String", "operatingSystem": "String", "hostName": "String", "address": "ip address format string", "dnsName": "String", "biosInfo": { "biosDescription": "String", "lastBoot": "date", "manufacturer": "String", "totalMemory": "integer", "timeZone": "String", "model": "String", "serialNumber": "String", "biosAssetTag": "String", "hardwareUuid": "String" }, "netBiosName": "String", "isContainer": "boolean", "fqdn": "String", "domain": "String", "osVersion": "String", "osArchitecture": "String", "domainRole": "String", "processor": { "description": "String", "speed": "float", "numberOfCpu": "integer" }, "ports": [ { "port": "Integer", "protocol": "String", "detectedService": "String", "description": "String", "firstFound": "Date", "lastUpdated": "Date" } ], "networkInterfaces": [ { "interfaceName": "String", "macAddress": "String", "address": "ip address format string", "gatewayAddress": [ "ip address format string" ], "dnsAddress": [ "ip address format string" ], "hostName": "String", "ipv4Address": [ "ip address format string" ], "ipv6Address": [ "ip address format string" ], "type": "String", "networkUuid": "String in UUID format" } ], "softwares": [ { "name": "String", "version": "String", "installedDate": "date", "lastUpdated": "date", "identifier": "String", "isSystemApp": "boolean", "isEnterpriseApp": "boolean", "publisher": "String", "language": "String", "type": "String", "installPath": "String", "lastUsedDate": "date", "firstFoundDate": "date" } ], "services": [ { "name": "String", "description": "String", "status": "String" } ], "volumes": [ { "name": "String", "size": "Integer", "free": "Integer" } ], "accounts": [ { "username": "String" } ], "businessMetaData": { "status": "String", "environment": "String", "company": "String", "department": "String", "ownedBy": "String", "managedBy": "String", "supportedBy": "String", "supportGroup": "String" }, "assignedLocation": { "name": "String", "street": "String", "city": "String", "state": "String", "zip": "String", "country": "String", "latitude": "String", "longitude": "String" }, "businessApps": [ { "businessAppId": "String" } ], "containers": [ { "version": "String", "numberOfContainers": "Integer", "numberOfImages": "Integer", "type": "String" } ], "customConnectorAttributes": { "key": "value" }, "findings": [ { "id": "String", "name": "String", "description": "String", "riskScore": "Integer", "category": "MISCONFIGURATION", "subCategory": "String ", "vendorName": "String", "vendorProductName": "String", "externalFindingId": "String", "findingURL": "String", "severity": "Integer", "findingStatus": "String ", "detectionResult": "String", "impact": "String", "solutionRecommendation": "String", "detectionRationale": "String", "references": [ "String" ], "firstFoundOn": "Date", "lastFoundOn": "Date", "reopenedOn": "Date", "lastFixedOn": "Date", "port": "Integer", "protocol": "String", "findingDetectionURL": "String", "profileId": "String", "mitreAttacks": [ { "tactics": { "id": "String", "name": "String", "isPrimary": "Boolean", "desc": "String" } }, { "techniques": { "id": "String", "name": "String", "isPrimary": "Boolean", "desc": "String" } }, { "subtechniques": { "id": "String", "name": "String", "desc": "String" } } ], "product": { "name": "String", "vendor": "String", "category": "String", "version": "String" }, "exceptionDetail": { "isFindingToBeIgnored": "boolean" }, "remediation": { "remediationStrategy": "String", "recurringRemediationSchedule": "String", "remediationBy": "String" }, "mitigation": { "mitigationStrategy": "String", "recurringMitigationSchedule": "String", "mitigationBy": "String" }, "findingType": { "misconfiguration": { "policy": { "id": "Integer", "type": "String", "title": "String", "techName": "String", "control": { "id": "Integer", "isRansomware": "Boolean", "evidenceURL": "String", "referenceID": "String", "benchmarkTypes": [ "String" ], "benchmarkTitle": "String", "controlSubCategory": "String" }, "description": "String", "policyFindingUrl": "String" }, "rule": { "ruleName": "String", "ruleDescription": "String" } } }, "attributes": { "key": "value" } } ] } } ] }
Sample JSON for category Vulnerability (without values)
{
"connectorMetaData": {
"requestId": "string",
"assetCount": "integer",
"source": "string",
"connectorUuid": "string"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "integer",
"sourceNativeKey": "string",
"instanceUuid": "String",
"instanceUuidSource": "String",
"hostName": "String",
"netBiosName": "string",
"fqdn": "String",
"macAddress": [
"string"
],
"ipAddress": [
"ip address format string"
],
"serialNumber": "String",
"hardwareUuid": "string"
},
"coreAttributes": {
"lastLoggedOnUser": "String",
"operatingSystem": "String",
"hostName": "String",
"address": "ip address format string",
"dnsName": "String",
"biosInfo": {
"biosDescription": "String",
"lastBoot": "date",
"manufacturer": "String",
"totalMemory": "integer",
"timeZone": "String",
"model": "String",
"serialNumber": "String",
"biosAssetTag": "String",
"hardwareUuid": "String"
},
"netBiosName": "String",
"isContainer": "boolean",
"fqdn": "String",
"domain": "String",
"osVersion": "String",
"osArchitecture": "String",
"domainRole": "String",
"processor": {
"description": "String",
"speed": "float",
"numberOfCpu": "integer"
},
"ports": [
{
"port": "Integer",
"protocol": "String",
"detectedService": "String",
"description": "String",
"firstFound": "Date",
"lastUpdated": "Date"
}
],
"networkInterfaces": [
{
"interfaceName": "String",
"macAddress": "String",
"address": "ip address format string",
"gatewayAddress": [
"ip address format string"
],
"dnsAddress": [
"ip address format string"
],
"hostName": "String",
"ipv4Address": [
"ip address format string"
],
"ipv6Address": [
"ip address format string"
],
"type": "String",
"networkUuid": "String in UUID format"
}
],
"softwares": [
{
"name": "String",
"version": "String",
"installedDate": "date",
"lastUpdated": "date",
"identifier": "String",
"isSystemApp": "boolean",
"isEnterpriseApp": "boolean",
"publisher": "String",
"language": "String",
"type": "String",
"installPath": "String",
"lastUsedDate": "date",
"firstFoundDate": "date"
}
],
"services": [
{
"name": "String",
"description": "String",
"status": "String"
}
],
"volumes": [
{
"name": "String",
"size": "Integer",
"free": "Integer"
}
],
"accounts": [
{
"username": "String"
}
],
"businessMetaData": {
"status": "String",
"environment": "String",
"company": "String",
"department": "String",
"ownedBy": "String",
"managedBy": "String",
"supportedBy": "String",
"supportGroup": "String"
},
"assignedLocation": {
"name": "String",
"street": "String",
"city": "String",
"state": "String",
"zip": "String",
"country": "String",
"latitude": "String",
"longitude": "String"
},
"businessApps": [
{
"businessAppId": "String"
}
],
"containers": [
{
"version": "String",
"numberOfContainers": "Integer",
"numberOfImages": "Integer",
"type": "String"
}
],
"customConnectorAttributes": {
"key": "value"
},
"findings": [
{
"id": "String",
"name": "String",
"description": "String",
"riskScore": "Integer",
"category": " VULNERABILITY ",
"subCategory": "String",
"vendorName": "String",
"vendorProductName": "String",
"externalFindingId": "String",
"findingURL": "String",
"severity": "Integer ",
"findingStatus": "String ",
"detectionResult": "String",
"impact": "String",
"solutionRecommendation": "String",
"detectionRationale": "String",
"references": [
"String"
],
"firstFoundOn": "Date",
"lastFoundOn": "Date",
"reopenedOn": "Date",
"lastFixedOn": "Date",
"port": "Integer",
"protocol": "String",
"findingDetectionURL": "String",
"profileId": "String",
"mitreAttacks": [
{
"tactics": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"techniques": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"subtechniques": {
"id": "String",
"name": "String",
"desc": "String"
}
}
],
"product": {
"name": "String",
"vendor": "String",
"category": "String",
"version": "String"
},
"exceptionDetail": {
"isFindingToBeIgnored": "boolean"
},
"remediation": {
"remediationStrategy": "String",
"recurringRemediationSchedule": "String",
"remediationBy": "String"
},
"mitigation": {
"mitigationStrategy": "String",
"recurringMitigationSchedule": "String",
"mitigationBy": "String"
},
"findingType": {
"vulnerability": {
"vendorId": "String",
"cveId": "String",
"qvs": "Integer",
"cweId": [
"String"
],
"cvss": {
"cvss2Base": "String",
"cvss2Temporal": "String",
"cvss3Base": "String",
"cvss3Temporal": "String",
"vector": "String"
},
"isPatchAvailable": "Boolean",
"isQualysPatchable": "Boolean",
"isExploitAvailable": "Boolean",
"exploitCodeMaturity": "String",
"exploitedByList": [
"String"
],
"owaspTop10Ids": [
{
"name": "String",
"url": "String"
}
],
"wascIds": [
{
"name": "String",
"url": "String"
}
]
}
},
"attributes": {
"key": "value"
}
}
]
}
}
]
}
Sample JSON for category Misconfiguration (with values)
{
"connectorMetaData": {
"requestId": 111114,
"connectorUuid": "10c3017f-f219-44e9-87e1-9c82f302490e",
"source": "WEBHOOK"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": null,
"sourceNativeKey": null,
"instanceUuid": null,
"instanceUuidSource": null,
"hostName": null,
"netBiosName": "FindingTestMisCon",
"fqdn": null,
"macAddress": null,
"ipAddress": [
"101.70.255.250"
],
"serialNumber": null,
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"coreAttributes": {
"lastLoggedOnUser": "Rxxxxxh",
"operatingSystem": "Windows 7",
"hostName": null,
"address": "101.70.255.250",
"dnsName": "DnsName",
"biosInfo": {
"biosDescription": "BioDescriptiontest",
"lastBoot": null,
"manufacturer": "Dell_Inc.",
"totalMemory": "8192",
"timeZone": "+5:30",
"model": "Latitude_7490",
"serialNumber": null,
"biosAssetTag": "NoAssetTag",
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"netBiosName": "FindingTestMisCon",
"isContainer": true,
"fqdn": null,
"domain": "com.co.in",
"osVersion": "7",
"osArchitecture": "64-Bits",
"domainRole": "test",
"processor": {
"description": "intel",
"speed": 34.2,
"numberOfCpu": 1
},
"ports": [
{
"port": "22",
"protocol": "TCP",
"detectedService": "ssh",
"description": "Test",
"firstFound": null,
"lastUpdated": null
},
{
"port": "22",
"protocol": "UDP",
"detectedService": "ssh update",
"description": "Test",
"firstFound": null,
"lastUpdated": null
}
],
"networkInterfaces": [
{
"interfaceName": "TestInterfaceName",
"macAddress": null,
"address": "101.70.255.250",
"gatewayAddress": [
"10.10.10.11"
],
"dnsAddress": [
"10.10.10.12"
],
"hostName": null,
"ipv4Address": [
"101.70.255.250"
],
"ipv6Address": null,
"type": "PUBLIC",
"networkUuid": null
}
],
"softwares": [
{
"name": "Python",
"version": "3",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "docker.io",
"version": "18.09.1+dfsg1-7.1+deb10u2",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "oracle 12",
"version": "12.1.0.2.0",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "Apache 2.2",
"version": "2.2.19",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
}
],
"services": [
{
"name": "remote test",
"description": "Test Service is running",
"status": "Running"
}
],
"volumes": [
{
"name": "C",
"size": 123,
"free": 123
}
],
"accounts": [
{
"username": "rijain"
}
],
"businessMetaData": {
"status": "Operational",
"environment": "Production",
"company": "ACME US",
"department": "Hostel",
"ownedBy": "Joey Bolick",
"managedBy": "Byron Fortuna",
"supportedBy": "JohnDoe",
"supportGroup": "testgroup"
},
"assignedLocation": {
"name": "eela",
"street": "punawale",
"city": "pune",
"state": "maharastra",
"zip": "411033",
"country": "india",
"latitude": "18.6298° N",
"longitude": "73.7997° E"
},
"businessApps": [
{
"businessAppId": null
}
],
"containers": [
{
"version": "34",
"numberOfContainers": 1,
"numberOfImages": 1,
"type": "Test"
}
],
"customConnectorAttributes": {
"TestKey": "testvalue"
},
"findings": [
{
"id": "123456",
"name": "SSH Server CBC Mode Ciphers Enabled",
"description": "SSH Server CBC Mode Ciphers Enabled Description",
"riskScore": 50,
"category": "MISCONFIGURATION",
"subCategory": "EOL/EOS",
"vendorName": "Qualys",
"vendorProductName": "IBM",
"externalFindingId": "123-3445-67",
"findingURL": "https://miller-hansen.com/",
"severity": 5,
"findingStatus": "PASS",
"detectionMethod": "External",
"detectionResult": "Severe",
"impact": "HIGH",
"solutionRecommendation": "SR test",
"detectionRationale": "DetectionRation Test",
"references": [
"TestURL1",
"TestURL2"
],
"firstFoundOn": 1725602066000,
"lastFoundOn": 1725602066000,
"reopenedOn": 1725602066000,
"lastFixedOn": 1725602066000,
"port": 22,
"protocol": "TCP",
"findingDetectionURL": "https://miller-hansen.com/testworks",
"profileId": "123456",
"mitreAttacks": [
{
"tactics": {
"id": "2312",
"name": "TestName",
"isPrimary": true,
"desc": "testDesc"
}
},
{
"techniques": {
"id": "1122",
"name": "testtechniquesName",
"isPrimary": true,
"desc": "testtechniquesName"
}
},
{
"subtechniques": {
"id": "1234",
"name": "testSubtechniquesName",
"desc": "testSubtechniquesDesc"
}
}
],
"product": {
"name": "Open SSH",
"vendor": "Qualys",
"category": "Policy Compliance",
"version": "3.2"
},
"exceptionDetail": {
"isFindingToBeIgnored": true
},
"remediation": {
"remediationStrategy": "False",
"recurringRemediationSchedule": "NO",
"remediationBy": "Rxxxabh xxxn"
},
"mitigation": {
"mitigationStrategy": "Kindway",
"recurringMitigationSchedule": "Daily",
"mitigationBy": "Ashu Jain"
},
"findingType": {
"misconfiguration": {
"policy": {
"id": 1231,
"type": "MISSING REQUIRED SOFTWARE",
"title": "MISSING REQUIRED SOFTWARE",
"techName": "MRS",
"control": {
"id": "1212",
"isRansomware": true,
"evidenceURL": "www.testurl.com/",
"referenceID": "121",
"benchmarkTypes": [
"Yes"
],
"benchmarkTitle": "This is for testing purpose",
"controlSubCategory": "No"
},
"description": "Description for testing",
"policyFindingUrl": "www.asset12311.com/"
},
"rule": {
"ruleName": "Missing required software test",
"ruleDescription": "MRS test for software"
}
}
},
"attributes": {
"key": "Test"
}
}
]
}
}
]
}
Sample JSON for category Vulnerability (with values)
{
"connectorMetaData": {
"requestId": "123445677",
"assetCount": 1,
"source": "WEBHOOK",
"connectorUuid": "da4b8361-2327-4bf1-af7d-2ce775bc9882"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": null,
"sourceNativeKey": null,
"instanceUuid": null,
"instanceUuidSource": null,
"hostName": null,
"netBiosName": "AssetNameTest",
"fqdn": null,
"macAddress": null,
"ipAddress": [
"100.63.255.250"
],
"serialNumber": null,
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"coreAttributes": {
"lastLoggedOnUser": "Rxxxxh",
"operatingSystem": "Windows 7",
"hostName": null,
"address": "100.63.255.250",
"dnsName": "DnsName",
"biosInfo": {
"biosDescription": "BioDescriptiontest",
"lastBoot": null,
"manufacturer": "Dell_Inc.",
"totalMemory": "8192",
"timeZone": "+5:30",
"model": "Latitude_7490",
"serialNumber": null,
"biosAssetTag": "NoAssetTag",
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"netBiosName": "AssetNameTest",
"isContainer": true,
"fqdn": null,
"domain": "com.co.in",
"osVersion": "7",
"osArchitecture": "64-Bits",
"domainRole": "test",
"processor": {
"description": "intel",
"speed": 34.2,
"numberOfCpu": 1
},
"ports": [
{
"port": "22",
"protocol": "TCP",
"detectedService": "ssh",
"description": "Test",
"firstFound": null,
"lastUpdated": null
{
"port": "22",
"protocol": "UDP",
"detectedService": "ssh update",
"description": "Test",
"firstFound": null,
"lastUpdated": null
}
],
"networkInterfaces": [
{
"interfaceName": "TestInterfaceName",
"macAddress": null,
"address": "100.63.255.250",
"gatewayAddress": [
"10.10.10.11"
],
"dnsAddress": [
"10.10.10.12"
],
"hostName": null,
"ipv4Address": [
"100.63.255.250"
],
"ipv6Address": null,
"type": "PUBLIC",
"networkUuid": null
}
],
"softwares": [
{
"name": "Python",
"version": "3",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "docker.io",
"version": "18.09.1+dfsg1-7.1+deb10u2",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
}, {
"name": "oracle 12",
"version": "12.1.0.2.0",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "Apache 2.2",
"version": "2.2.19",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
}
],
"services": [
{
"name": "remote test",
"description": "Test Service is running",
"status": "Running"
}
],
"volumes": [
{
"name": "C",
"size": 123,
"free": 123
}
],
"accounts": [
{
"username": "rijain"
}
],
"businessMetaData": {
"status": "Operational",
"environment": "Production",
"company": "ACME US",
"department": "Hostel",
"ownedBy": "Joey Bolick",
"managedBy": "Byron Fortuna",
"supportedBy": "JohnDoe",
"supportGroup": "testgroup"
},
"assignedLocation": {
"name": "eela",
"street": "punawale",
"city": "pune",
"state": "maharastra",
"zip": "411033",
"country": "india",
"latitude": "18.6298° N",
"longitude": "73.7997° E"
},
"businessApps": [
{
"businessAppId": null
}
],
"containers": [
{
"version": "34",
"numberOfContainers": 1,
"numberOfImages": 1,
"type": "Test"
}
],
"customConnectorAttributes": {
"TestKey": "testvalue"
},
"findings": [
{
"id": "123456",
"name": "SSH Server CBC Mode Ciphers Enabled",
"description": "SSH Server CBC Mode Ciphers Enabled Description",
"riskScore": 50,
"category": "VULNERABILITY",
"subCategory": "Confirmed",
"vendorName": "Qualys",
"vendorProductName": "IBM",
"externalFindingId": "123-3445-67",
"findingURL": "https://miller-hansen.com/",
"severity": 2,
"findingStatus": "ACTIVE",
"detectionMethod": "External",
"detectionResult": "Severe",
"impact": "HIGH",
"solutionRecommendation": "SR test",
"detectionRationale": "DetectionRation Test",
"references": [
"TestURL1",
"TestURL2"
],
"firstFoundOn": 1725602066000,
"lastFoundOn": 1725602066000,
"reopenedOn": 1725602066000,
"lastFixedOn": 1725602066000,
"port": 22,
"protocol": "TCP",
"findingDetectionURL": "https://miller-hansen.com/testworks",
"profileId": "123456",
"mitreAttacks": [
{
"tactics": {
"id": "2312",
"name": "TestName",
"isPrimary": true,
"desc": "testDesc"
}
},
{
"techniques": {
"id": "1122",
"name": "testtechniquesName",
"isPrimary": true,
"desc": "testtechniquesName"
}
},
{
"subtechniques": {
"id": "1234",
"name": "testSubtechniquesName",
"desc": "testSubtechniquesDesc"
}
}
],
"product": {
"name": "Open SSH",
"vendor": "Qualys",
"category": "Policy Compliance",
"version": "3.2"
},
"exceptionDetail": {
"isFindingToBeIgnored": true
},
"remediation": {
"remediationStrategy": "False",
"recurringRemediationSchedule": "NO",
"remediationBy": "Rxxxxh xxxn"
},
"mitigation": {
"mitigationStrategy": "Kindway",
"recurringMitigationSchedule": "Daily",
"mitigationBy": "Ashu Jain"
},
"findingType": {
"vulnerability": {
"vendorId": "12343",
"cveId": "CVE-2008-5161",
"qvs": 2,
"cweId": [
"123"
],
"cvss": {
"cvss2Base": "0",
"cvss2Temporal": "0",
"cvss3Base": "0",
"cvss3Temporal": "E:U/RL:OF/RC:C",
"vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N"
},
"isPatchAvailable": false,
"isQualysPatchable": true,
"isExploitAvailable": true,
"exploitCodeMaturity": "No",
"exploitedByList": [
"yes"
],
"owaspTop10Ids": [
{
"name": "owaspTop10Idsname",
"url": "www.test.owaspTop10IdsURL/"
}
],
"wascIds": [
{
"name": "wascIdsName",
"url": "www.cash/wascIdsURL/Test"
}
]
}
},
"attributes": {
"key": "Test"
}
}
]
}
}
]
}