Import Third-Party Assets API
This API is used to import Third-Party assets into your CSAM account. It is introduced only for the Third-Party asset source - Webhook.
Before You Begin
- Before importing the Third-Party assets, create the "businessAppId" using the 2.0/upsert/am/businessapp/metadata API.
- The values mentioned in the "identityAttributes" list except "qualysAssetId", "instanceUuid", and "instanceUuidSource" must be the same as mentioned in the "coreAttributes" list.
Sample - Import Third-Party AssetsSample - Import Third-Party Assets
API Request
curl --location --request POST
'<qualys_base_url>/rest/2.0/am/connector/asset/data/sync' \
--header 'Authorization: Bearer <JWT Token>' \
--header 'Content-Type: application/json' \
--data-raw '<JSON payload>'
Sample JSON Payload (without values)
{
"connectorMetaData": {
"requestId": "string",
"assetCount": "integer",
"source": "string",
"connectorUuid": "string"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "string",
"sourceNativeKey": "string",
"instanceUuid": "String",
"instanceUuidSource": "String",
"hostName": "String",
"netBiosName": "string",
"fqdn": "String",
"macAddress": [
"string"
],
"ipAddress": [
"String"
],
"serialNumber": "String",
"hardwareUuid": "string",
"networkUuid": "String"
},
"coreAttributes": {
"lastLoggedOnUser": "String",
"operatingSystem": "String",
"hostName": "String",
"address": "String",
"dnsName": "String",
"biosInfo": {
"biosDescription": "String",
"lastBoot": "date",
"manufacturer": "String",
"totalMemory": "integer",
"timeZone": "String",
"model": "String",
"serialNumber": "String",
"biosAssetTag": "String",
"hardwareUuid": "String"
},
"netBiosName": "String",
"isContainer": "boolean",
"fqdn": "String",
"domain": "String",
"osVersion": "String",
"osArchitecture": "String",
"domainRole": "String",
"processor": {
"description": "String",
"speed": "float",
"numberOfCpu": "integer"
},
"ports": [
{
"port": "Integer",
"protocol": "String",
"detectedService": "String",
"description": "String",
"firstFound": "Date",
"lastUpdated": "Date"
}
],
"networkInterfaces": [
{
"interfaceName": "String",
"macAddress": "String",
"address": "String",
"gatewayAddress": [
"String"
],
"dnsAddress": [
"String"
],
"hostName": "String",
"ipv4Address": [
"String"
],
"ipv6Address": [
"String"
],
"type": "String",
"networkUuid": "String"
}
],
"softwares": [
{
"name": "String",
"version": "String",
"installedDate": "date",
"lastUpdated": "date",
"identifier": "String",
"isSystemApp": "boolean",
"isEnterpriseApp": "boolean",
"publisher": "String",
"language": "String",
"type": "String",
"installPath": "String",
"lastUsedDate": "date",
"firstFoundDate": "date"
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"services": [
{
"name": "String",
"description": "String",
"status": "String"
}
],
"volumes": [
{
"name": "String",
"size": "Integer",
"free": "Integer"
}
],
"accounts": [
{
"username": "String"
}
],
"businessMetaData": {
"status": "String",
"environment": "String",
"company": "String",
"department": "String",
"ownedBy": "String",
"managedBy": "String",
"supportedBy": "String",
"supportGroup": "String"
},
"assignedLocation": {
"name": "String",
"street": "String",
"city": "String",
"state": "String",
"zip": "String",
"country": "String",
"latitude": "String",
"longitude": "String"
},
"businessApps": [
{
"businessAppId": "String"
}
],
"containers": [
{
"version": "String",
"numberOfContainers": "Integer",
"numberOfImages": "Integer",
"type": "String"
}
],
"customConnectorAttributes": {
"key": "value"
}
}
}
]
}
Sample JSON Payload with values
{
"connectorMetaData": {
"requestId": "6562e033-8456-4c13-989f-7f4f6fc67e3b1758694084",
"connectorUuid": "489e8429-2e82-4599-a2a8-xxxxxxxxxxxx",
"source": "SNOW"
},
"assetData": [
{
"identityAttributes": {
"hostName": "<sample hostname>",
"fqdn": null,
"ipAddress": [
"xx.xx.xx.xx"
],
"netBiosName": null,
"macAddress": null,
"hardwareUuid": null,
"serialNumber": null,
"sourceNativeKey": "xxxxx-xxx"
},
"coreAttributes": {
"lastLoggedOnUser": "Username",
"netBiosName": null,
"hostName": "<sample hostname>",
"fqdn": null,
"address": "xx.xx.xx.xx",
"biosInfo": {
"biosDescription": "Phoenix Technologies LTD 6.00",
"manufacturer": "",
"totalMemory": 8192,
"timeZone": "+5:30",
"model": "VMware Virtual Platform",
"serialNumber": null,
"biosAssetTag": "NoAssetTag",
"hardwareUuid": null
},
"softwares": [
{
"name": "Microsoft windows 11",
"version": "2011"
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"processor": {
"description": "intel",
"speed": "64",
"numberOfCpu": 2
},
"customConnectorAttributes": {
"key1": "New",
"key2": "New2",
"key3": "value3",
"key4": "value4",
"key5": "value5"
},
"businessMetaData": {
"status": "Running",
"environment": "Development",
"company": "Qualys",
"department": "CSAM",
"ownedBy": "User",
"managedBy": "User",
"supportedBy": "User",
"supportGroup": "Application"
},
"assignedLocation": {
"name": "eela",
"street": "punawale",
"city": "pune",
"state": "maharastra",
"zip": "411033",
"country": "india",
"latitude": "18.6298° N",
"longitude": "73.7997° E"
},
"networkInterfaces": [
{
"interfaceName": "Primary network interface",
"macAddress": null,
"address": "xx.xx.xx.xx",
"hostName": "T490",
"ipv4Address": [
"xx.xx.xx.xx"
],
"type": "PUBLIC"
}
],
"ports": [
{
"port": "8080",
"protocol": "TCP",
"detectedService": "",
"description": "TCP port"
}
],
"services": [
{
"name": "Services",
"description": "xyz",
"status": "ACTIVE"
}
],
"volumes": [
{
"name": "c",
"size": "100",
"free": "10"
}
],
"accounts": [
{
"username": "username"
}
],
"businessApps": 608042025011
}
}
]
}
Response
{
"message": "All Assets are successfully published for sync.",
"responseCode": "SUCCESSFULLY_PUBLISHED",
"assetsError": {}
}
Third Party Assets API with Webhook Findings
You can provide the 'Webhook Findings' information in the sample payload of this API.
This section is introduced explicitly for ETM customers. We support the 'Vulnerability' and 'Misconfiguration' categories for the payload.
Using this API with the 'Webhook Findings' information, you get the details, such as Vulnerabilities, QDS, and Risk-Contributing findings. Also, if any misconfiguration finding in the form of EOL EOS Software exists, then Open Port detects it and calculates the Risk Score.
Important to Know!
When importing assets with the 'Webhook Findings' information, certain parameters and values must follow specific rules based on the category.
- When the category is VULNERABILITY:
- subCategory must be either Confirmed, Information, or Potential.
- findingStatus must be either NEW, ACTIVE, FIXED, or NULL.
- severity must be in the range of 1-5.
- When the category is MISCONFIGURATION:
- findingStatus must be either PASS, FAIL, or NULL.
- severity must be in the range of 1-5.
The following finding parameters are mandatory for both categories:
| Parameter | Data Type | Description |
|---|---|---|
| name | String | Name of the finding. |
| riskScore | Integer | Risk score assigned to the finding. |
| category | String | Category that classifies the type of finding.
For example, VULNERABILITY or MISCONFIGURATION. |
| vendorName | String | Name of the vendor. |
| vendorProductName | String | Name of the vendor product. |
| externalFindingId | String | Unique identifier assigned to the finding by the third-party source. |
| severity | String | Severity level of the finding. The value must be in the range of 1-5 |
| findingStatus | String | Current status of the finding. The value must be as per the category:
|
| lastFoundOn | Date | Date and time when the third-party source most recently detected the finding on the asset. The value must be provided in Epoch format.
For example, 1719830400000 represents a specific timestamp in milliseconds since January 1, 1970 (UTC). |
Sample - Import Third-Party Assets to CSAMSample - Import Third-Party Assets to CSAM
API Request
curl --location --request POST
'<qualys_base_url>/rest/2.0/am/connector/asset/data/sync' \
--header 'Authorization: Bearer <JWT_Token>' \
--header 'Content-Type: application/json' \
--data-raw '<JSON payload>'
Sample JSON for category Misconfiguration (without values)
{
"connectorMetaData": {
"requestId": "string",
"assetCount": "integer",
"source": "string",
"connectorUuid": "string"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "integer",
"sourceNativeKey": "string",
"instanceUuid": "String",
"instanceUuidSource": "String",
"hostName": "String",
"netBiosName": "string",
"fqdn": "String",
"macAddress": [
"string"
],
"ipAddress": [
"ip address format string"
],
"serialNumber": "String",
"hardwareUuid": "string"
},
"coreAttributes": {
"lastLoggedOnUser": "String",
"operatingSystem": "String",
"hostName": "String",
"address": "ip address format string",
"dnsName": "String",
"biosInfo": {
"biosDescription": "String",
"lastBoot": "date",
"manufacturer": "String",
"totalMemory": "integer",
"timeZone": "String",
"model": "String",
"serialNumber": "String",
"biosAssetTag": "String",
"hardwareUuid": "String"
},
"netBiosName": "String",
"isContainer": "boolean",
"fqdn": "String",
"domain": "String",
"osVersion": "String",
"osArchitecture": "String",
"domainRole": "String",
"processor": {
"description": "String",
"speed": "float",
"numberOfCpu": "integer"
},
"ports": [
{
"port": "Integer",
"protocol": "String",
"detectedService": "String",
"description": "String",
"firstFound": "Date",
"lastUpdated": "Date"
}
],
"networkInterfaces": [
{
"interfaceName": "String",
"macAddress": "String",
"address": "ip address format string",
"gatewayAddress": [
"ip address format string"
],
"dnsAddress": [
"ip address format string"
],
"hostName": "String",
"ipv4Address": [
"ip address format string"
],
"ipv6Address": [
"ip address format string"
],
"type": "String",
"networkUuid": "String in UUID format"
}
],
"softwares": [
{
"name": "String",
"version": "String",
"installedDate": "date",
"lastUpdated": "date",
"identifier": "String",
"isSystemApp": "boolean",
"isEnterpriseApp": "boolean",
"publisher": "String",
"language": "String",
"type": "String",
"installPath": "String",
"lastUsedDate": "date",
"firstFoundDate": "date"
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"services": [
{
"name": "String",
"description": "String",
"status": "String"
}
],
"volumes": [
{
"name": "String",
"size": "Integer",
"free": "Integer"
}
],
"accounts": [
{
"username": "String"
}
],
"businessMetaData": {
"status": "String",
"environment": "String",
"company": "String",
"department": "String",
"ownedBy": "String",
"managedBy": "String",
"supportedBy": "String",
"supportGroup": "String"
},
"assignedLocation": {
"name": "String",
"street": "String",
"city": "String",
"state": "String",
"zip": "String",
"country": "String",
"latitude": "String",
"longitude": "String"
},
"businessApps": [
{
"businessAppId": "String"
}
],
"containers": [
{
"version": "String",
"numberOfContainers": "Integer",
"numberOfImages": "Integer",
"type": "String"
}
],
"customConnectorAttributes": {
"key": "value"
},
"findings": [
{
"id": "String",
"name": "String",
"description": "String",
"riskScore": "Integer",
"category": "MISCONFIGURATION",
"subCategory": "String ",
"vendorName": "String",
"vendorProductName": "String",
"externalFindingId": "String",
"findingURL": "String",
"severity": "Integer",
"findingStatus": "String ",
"detectionResult": "String",
"impact": "String",
"solutionRecommendation": "String",
"detectionRationale": "String",
"references": [
"String"
],
"firstFoundOn": "Date",
"lastFoundOn": "Date",
"reopenedOn": "Date",
"lastFixedOn": "Date",
"port": "Integer",
"protocol": "String",
"findingDetectionURL": "String",
"profileId": "String",
"mitreAttacks": [
{
"tactics": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"techniques": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"subtechniques": {
"id": "String",
"name": "String",
"desc": "String"
}
}
],
"product": {
"name": "String",
"vendor": "String",
"category": "String",
"version": "String"
},
"exceptionDetail": {
"isFindingToBeIgnored": "boolean"
},
"remediation": {
"remediationStrategy": "String",
"recurringRemediationSchedule": "String",
"remediationBy": "String"
},
"mitigation": {
"mitigationStrategy": "String",
"recurringMitigationSchedule": "String",
"mitigationBy": "String"
},
"findingType": {
"misconfiguration": {
"policy": {
"id": "Integer",
"type": "String",
"title": "String",
"techName": "String",
"control": {
"id": "Integer",
"isRansomware": "Boolean",
"evidenceURL": "String",
"referenceID": "String",
"benchmarkTypes": [
"String"
],
"benchmarkTitle": "String",
"controlSubCategory": "String"
},
"description": "String",
"policyFindingUrl": "String"
},
"rule": {
"ruleName": "String",
"ruleDescription": "String"
}
}
},
"attributes": {
"key": "value"
}
}
]
}
}
]
}
Sample JSON for category Vulnerability (without values)
{
"connectorMetaData": {
"requestId": "string",
"assetCount": "integer",
"source": "string",
"connectorUuid": "string"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": "integer",
"sourceNativeKey": "string",
"instanceUuid": "String",
"instanceUuidSource": "String",
"hostName": "String",
"netBiosName": "string",
"fqdn": "String",
"macAddress": [
"string"
],
"ipAddress": [
"ip address format string"
],
"serialNumber": "String",
"hardwareUuid": "string"
},
"coreAttributes": {
"lastLoggedOnUser": "String",
"operatingSystem": "String",
"hostName": "String",
"address": "ip address format string",
"dnsName": "String",
"biosInfo": {
"biosDescription": "String",
"lastBoot": "date",
"manufacturer": "String",
"totalMemory": "integer",
"timeZone": "String",
"model": "String",
"serialNumber": "String",
"biosAssetTag": "String",
"hardwareUuid": "String"
},
"netBiosName": "String",
"isContainer": "boolean",
"fqdn": "String",
"domain": "String",
"osVersion": "String",
"osArchitecture": "String",
"domainRole": "String",
"processor": {
"description": "String",
"speed": "float",
"numberOfCpu": "integer"
},
"ports": [
{
"port": "Integer",
"protocol": "String",
"detectedService": "String",
"description": "String",
"firstFound": "Date",
"lastUpdated": "Date"
}
],
"networkInterfaces": [
{
"interfaceName": "String",
"macAddress": "String",
"address": "ip address format string",
"gatewayAddress": [
"ip address format string"
],
"dnsAddress": [
"ip address format string"
],
"hostName": "String",
"ipv4Address": [
"ip address format string"
],
"ipv6Address": [
"ip address format string"
],
"type": "String",
"networkUuid": "String in UUID format"
}
],
"softwares": [
{
"name": "String",
"version": "String",
"installedDate": "date",
"lastUpdated": "date",
"identifier": "String",
"isSystemApp": "boolean",
"isEnterpriseApp": "boolean",
"publisher": "String",
"language": "String",
"type": "String",
"installPath": "String",
"lastUsedDate": "date",
"firstFoundDate": "date"
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"services": [
{
"name": "String",
"description": "String",
"status": "String"
}
],
"volumes": [
{
"name": "String",
"size": "Integer",
"free": "Integer"
}
],
"accounts": [
{
"username": "String"
}
],
"businessMetaData": {
"status": "String",
"environment": "String",
"company": "String",
"department": "String",
"ownedBy": "String",
"managedBy": "String",
"supportedBy": "String",
"supportGroup": "String"
},
"assignedLocation": {
"name": "String",
"street": "String",
"city": "String",
"state": "String",
"zip": "String",
"country": "String",
"latitude": "String",
"longitude": "String"
},
"businessApps": [
{
"businessAppId": "String"
}
],
"containers": [
{
"version": "String",
"numberOfContainers": "Integer",
"numberOfImages": "Integer",
"type": "String"
}
],
"customConnectorAttributes": {
"key": "value"
},
"findings": [
{
"id": "String",
"name": "String",
"description": "String",
"riskScore": "Integer",
"category": " VULNERABILITY ",
"subCategory": "String",
"vendorName": "String",
"vendorProductName": "String",
"externalFindingId": "String",
"findingURL": "String",
"severity": "Integer ",
"findingStatus": "String ",
"detectionResult": "String",
"impact": "String",
"solutionRecommendation": "String",
"detectionRationale": "String",
"references": [
"String"
],
"firstFoundOn": "Date",
"lastFoundOn": "Date",
"reopenedOn": "Date",
"lastFixedOn": "Date",
"port": "Integer",
"protocol": "String",
"findingDetectionURL": "String",
"profileId": "String",
"mitreAttacks": [
{
"tactics": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"techniques": {
"id": "String",
"name": "String",
"isPrimary": "Boolean",
"desc": "String"
}
},
{
"subtechniques": {
"id": "String",
"name": "String",
"desc": "String"
}
}
],
"product": {
"name": "String",
"vendor": "String",
"category": "String",
"version": "String"
},
"exceptionDetail": {
"isFindingToBeIgnored": "boolean"
},
"remediation": {
"remediationStrategy": "String",
"recurringRemediationSchedule": "String",
"remediationBy": "String"
},
"mitigation": {
"mitigationStrategy": "String",
"recurringMitigationSchedule": "String",
"mitigationBy": "String"
},
"findingType": {
"vulnerability": {
"vendorId": "String",
"cveId": "String",
"qvs": "Integer",
"cweId": [
"String"
],
"cvss": {
"cvss2Base": "String",
"cvss2Temporal": "String",
"cvss3Base": "String",
"cvss3Temporal": "String",
"vector": "String"
},
"isPatchAvailable": "Boolean",
"isQualysPatchable": "Boolean",
"isExploitAvailable": "Boolean",
"exploitCodeMaturity": "String",
"exploitedByList": [
"String"
],
"owaspTop10Ids": [
{
"name": "String",
"url": "String"
}
],
"wascIds": [
{
"name": "String",
"url": "String"
}
]
}
},
"attributes": {
"key": "value"
}
}
]
}
}
]
}
Sample JSON for category Misconfiguration (with values)
{
"connectorMetaData": {
"requestId": 111114,
"connectorUuid": "10c3017f-f219-44e9-87e1-9c82f302490e",
"source": "WEBHOOK"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": null,
"sourceNativeKey": null,
"instanceUuid": null,
"instanceUuidSource": null,
"hostName": null,
"netBiosName": "FindingTestMisCon",
"fqdn": null,
"macAddress": null,
"ipAddress": [
"101.70.255.250"
],
"serialNumber": null,
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"coreAttributes": {
"lastLoggedOnUser": "Rxxxxxh",
"operatingSystem": "Windows 7",
"hostName": null,
"address": "101.70.255.250",
"dnsName": "DnsName",
"biosInfo": {
"biosDescription": "BioDescriptiontest",
"lastBoot": null,
"manufacturer": "Dell_Inc.",
"totalMemory": "8192",
"timeZone": "+5:30",
"model": "Latitude_7490",
"serialNumber": null,
"biosAssetTag": "NoAssetTag",
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"netBiosName": "FindingTestMisCon",
"isContainer": true,
"fqdn": null,
"domain": "com.co.in",
"osVersion": "7",
"osArchitecture": "64-Bits",
"domainRole": "test",
"processor": {
"description": "intel",
"speed": 34.2,
"numberOfCpu": 1
},
"ports": [
{
"port": "22",
"protocol": "TCP",
"detectedService": "ssh",
"description": "Test",
"firstFound": null,
"lastUpdated": null
},
{
"port": "22",
"protocol": "UDP",
"detectedService": "ssh update",
"description": "Test",
"firstFound": null,
"lastUpdated": null
}
],
"networkInterfaces": [
{
"interfaceName": "TestInterfaceName",
"macAddress": null,
"address": "101.70.255.250",
"gatewayAddress": [
"10.10.10.11"
],
"dnsAddress": [
"10.10.10.12"
],
"hostName": null,
"ipv4Address": [
"101.70.255.250"
],
"ipv6Address": null,
"type": "PUBLIC",
"networkUuid": null
}
],
"softwares": [
{
"name": "Python",
"version": "3",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "docker.io",
"version": "18.09.1+dfsg1-7.1+deb10u2",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "oracle 12",
"version": "12.1.0.2.0",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "Apache 2.2",
"version": "2.2.19",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"services": [
{
"name": "remote test",
"description": "Test Service is running",
"status": "Running"
}
],
"volumes": [
{
"name": "C",
"size": 123,
"free": 123
}
],
"accounts": [
{
"username": "rijain"
}
],
"businessMetaData": {
"status": "Operational",
"environment": "Production",
"company": "ACME US",
"department": "Hostel",
"ownedBy": "Joey Bolick",
"managedBy": "Byron Fortuna",
"supportedBy": "JohnDoe",
"supportGroup": "testgroup"
},
"assignedLocation": {
"name": "eela",
"street": "punawale",
"city": "pune",
"state": "maharastra",
"zip": "411033",
"country": "india",
"latitude": "18.6298\u00b0 N",
"longitude": "73.7997\u00b0 E"
},
"businessApps": [
{
"businessAppId": null
}
],
"containers": [
{
"version": "34",
"numberOfContainers": 1,
"numberOfImages": 1,
"type": "Test"
}
],
"customConnectorAttributes": {
"TestKey": "testvalue"
},
"findings": [
{
"id": "123456",
"name": "SSH Server CBC Mode Ciphers Enabled",
"description": "SSH Server CBC Mode Ciphers Enabled Description",
"riskScore": 50,
"category": "MISCONFIGURATION",
"subCategory": "EOL/EOS",
"vendorName": "Qualys",
"vendorProductName": "IBM",
"externalFindingId": "123-3445-67",
"findingURL": "https://miller-hansen.com/",
"severity": 5,
"findingStatus": "PASS",
"detectionMethod": "External",
"detectionResult": "Severe",
"impact": "HIGH",
"solutionRecommendation": "SR test",
"detectionRationale": "DetectionRation Test",
"references": [
"TestURL1",
"TestURL2"
],
"firstFoundOn": 1725602066000,
"lastFoundOn": 1725602066000,
"reopenedOn": 1725602066000,
"lastFixedOn": 1725602066000,
"port": 22,
"protocol": "TCP",
"findingDetectionURL": "https://miller-hansen.com/testworks",
"profileId": "123456",
"mitreAttacks": [
{
"tactics": {
"id": "2312",
"name": "TestName",
"isPrimary": true,
"desc": "testDesc"
}
},
{
"techniques": {
"id": "1122",
"name": "testtechniquesName",
"isPrimary": true,
"desc": "testtechniquesName"
}
},
{
"subtechniques": {
"id": "1234",
"name": "testSubtechniquesName",
"desc": "testSubtechniquesDesc"
}
}
],
"product": {
"name": "Open SSH",
"vendor": "Qualys",
"category": "Policy Compliance",
"version": "3.2"
},
"exceptionDetail": {
"isFindingToBeIgnored": true
},
"remediation": {
"remediationStrategy": "False",
"recurringRemediationSchedule": "NO",
"remediationBy": "Rxxxabh xxxn"
},
"mitigation": {
"mitigationStrategy": "Kindway",
"recurringMitigationSchedule": "Daily",
"mitigationBy": "Ashu Jain"
},
"findingType": {
"misconfiguration": {
"policy": {
"id": 1231,
"type": "MISSING REQUIRED SOFTWARE",
"title": "MISSING REQUIRED SOFTWARE",
"techName": "MRS",
"control": {
"id": "1212",
"isRansomware": true,
"evidenceURL": "www.testurl.com/",
"referenceID": "121",
"benchmarkTypes": [
"Yes"
],
"benchmarkTitle": "This is for testing purpose",
"controlSubCategory": "No"
},
"description": "Description for testing",
"policyFindingUrl": "www.asset12311.com/"
},
"rule": {
"ruleName": "Missing required software test",
"ruleDescription": "MRS test for software"
}
}
},
"attributes": {
"key": "Test"
}
}
]
}
}
]
}
Sample JSON for category Vulnerability (with values)
{
"connectorMetaData": {
"requestId": "123445677",
"assetCount": 1,
"source": "WEBHOOK",
"connectorUuid": "da4b8361-2327-4bf1-af7d-2ce775bc9882"
},
"assetData": [
{
"identityAttributes": {
"qualysAssetId": null,
"sourceNativeKey": null,
"instanceUuid": null,
"instanceUuidSource": null,
"hostName": null,
"netBiosName": "AssetNameTest",
"fqdn": null,
"macAddress": null,
"ipAddress": [
"100.63.255.250"
],
"serialNumber": null,
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"coreAttributes": {
"lastLoggedOnUser": "Rxxxxh",
"operatingSystem": "Windows 7",
"hostName": null,
"address": "100.63.255.250",
"dnsName": "DnsName",
"biosInfo": {
"biosDescription": "BioDescriptiontest",
"lastBoot": null,
"manufacturer": "Dell_Inc.",
"totalMemory": "8192",
"timeZone": "+5:30",
"model": "Latitude_7490",
"serialNumber": null,
"biosAssetTag": "NoAssetTag",
"hardwareUuid": "86712A42-18D8-2A16-D0FC-1E3DABD"
},
"netBiosName": "AssetNameTest",
"isContainer": true,
"fqdn": null,
"domain": "com.co.in",
"osVersion": "7",
"osArchitecture": "64-Bits",
"domainRole": "test",
"processor": {
"description": "intel",
"speed": 34.2,
"numberOfCpu": 1
},
"ports": [
{
"port": "22",
"protocol": "TCP",
"detectedService": "ssh",
"description": "Test",
"firstFound": null,
"lastUpdated": null
},
{
"port": "22",
"protocol": "UDP",
"detectedService": "ssh update",
"description": "Test",
"firstFound": null,
"lastUpdated": null
}
],
"networkInterfaces": [
{
"interfaceName": "TestInterfaceName",
"macAddress": null,
"address": "100.63.255.250",
"gatewayAddress": [
"10.10.10.11"
],
"dnsAddress": [
"10.10.10.12"
],
"hostName": null,
"ipv4Address": [
"100.63.255.250"
],
"ipv6Address": null,
"type": "PUBLIC",
"networkUuid": null
}
],
"softwares": [
{
"name": "Python",
"version": "3",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "docker.io",
"version": "18.09.1+dfsg1-7.1+deb10u2",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "oracle 12",
"version": "12.1.0.2.0",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
},
{
"name": "Apache 2.2",
"version": "2.2.19",
"installedDate": 1233321123,
"lastUpdated": 1233321123,
"identifier": null,
"isSystemApp": false,
"isEnterpriseApp": false,
"publisher": null,
"language": null,
"type": null,
"installPath": null,
"lastUsedDate": 1233321123,
"firstFoundDate": 1233321123
}
],
"sourceLastUpdatedDate": 1768473175000,
"sourceCreatedDate": 1768473175000,
"services": [
{
"name": "remote test",
"description": "Test Service is running",
"status": "Running"
}
],
"volumes": [
{
"name": "C",
"size": 123,
"free": 123
}
],
"accounts": [
{
"username": "<username>"
}
],
"businessMetaData": {
"status": "Operational",
"environment": "Production",
"company": "ACME US",
"department": "Hostel",
"ownedBy": "Joey Bolick",
"managedBy": "Byron Fortuna",
"supportedBy": "JohnDoe",
"supportGroup": "testgroup"
},
"assignedLocation": {
"name": "eela",
"street": "punawale",
"city": "pune",
"state": "maharastra",
"zip": "411033",
"country": "india",
"latitude": "18.6298\u00b0 N",
"longitude": "73.7997\u00b0 E"
},
"businessApps": [
{
"businessAppId": null
}
],
"containers": [
{
"version": "34",
"numberOfContainers": 1,
"numberOfImages": 1,
"type": "Test"
}
],
"customConnectorAttributes": {
"TestKey": "testvalue"
},
"findings": [
{
"id": "123456",
"name": "SSH Server CBC Mode Ciphers Enabled",
"description": "SSH Server CBC Mode Ciphers Enabled Description",
"riskScore": 50,
"category": "VULNERABILITY",
"subCategory": "Confirmed",
"vendorName": "Qualys",
"vendorProductName": "IBM",
"externalFindingId": "123-3445-67",
"findingURL": "https://miller-hansen.com/",
"severity": 2,
"findingStatus": "ACTIVE",
"detectionMethod": "External",
"detectionResult": "Severe",
"impact": "HIGH",
"solutionRecommendation": "SR test",
"detectionRationale": "DetectionRation Test",
"references": [
"TestURL1",
"TestURL2"
],
"firstFoundOn": 1725602066000,
"lastFoundOn": 1725602066000,
"reopenedOn": 1725602066000,
"lastFixedOn": 1725602066000,
"port": 22,
"protocol": "TCP",
"findingDetectionURL": "https://miller-hansen.com/testworks",
"profileId": "123456",
"mitreAttacks": [
{
"tactics": {
"id": "2312",
"name": "TestName",
"isPrimary": true,
"desc": "testDesc"
}
},
{
"techniques": {
"id": "1122",
"name": "testtechniquesName",
"isPrimary": true,
"desc": "testtechniquesName"
}
},
{
"subtechniques": {
"id": "1234",
"name": "testSubtechniquesName",
"desc": "testSubtechniquesDesc"
}
}
],
"product": {
"name": "Open SSH",
"vendor": "Qualys",
"category": "Policy Compliance",
"version": "3.2"
},
"exceptionDetail": {
"isFindingToBeIgnored": true
},
"remediation": {
"remediationStrategy": "False",
"recurringRemediationSchedule": "NO",
"remediationBy": "Rxxxxh xxxn"
},
"mitigation": {
"mitigationStrategy": "Kindway",
"recurringMitigationSchedule": "Daily",
"mitigationBy": "Ashu Jain"
},
"findingType": {
"vulnerability": {
"vendorId": "12343",
"cveId": "CVE-2008-5161",
"qvs": 2,
"cweId": [
"123"
],
"cvss": {
"cvss2Base": "0",
"cvss2Temporal": "0",
"cvss3Base": "0",
"cvss3Temporal": "E:U/RL:OF/RC:C",
"vector": "AV:N/AC:H/Au:N/C:P/I:N/A:N"
},
"isPatchAvailable": false,
"isQualysPatchable": true,
"isExploitAvailable": true,
"exploitCodeMaturity": "No",
"exploitedByList": [
"yes"
],
"owaspTop10Ids": [
{
"name": "owaspTop10Idsname",
"url": "www.test.owaspTop10IdsURL/"
}
],
"wascIds": [
{
"name": "wascIdsName",
"url": "www.cash/wascIdsURL/Test"
}
]
}
},
"attributes": {
"key": "Test"
}
}
]
}
}
]
}