Qualys Containerized Scanner Appliance

The Qualys Containerized Scanner Appliance(QCSA) offers users to deploy a Qualys scanner as a container. By utilizing the QCSA Docker image along with a Qualys subscription plan, users can create multiple Containerized Scanners. QCSA leverages the advantage of Docker's benefits, including faster deployment, enhanced efficiency, and optimized resource management. Additionally, it supports the same and automatic updates as the Qualys Virtual Scanner Appliances.

QCSA Features 

The QCSA offers following features:

• Supports scanning for Vulnerability Management (VM), Policy Compliance (PC), Web Application Scanning (WAS), MAP Scans.
• Scan status and reports for supported scan types are accessible from the Qualys Cloud Platform.
• Supports Docker Engine and Podman (in rootful mode) as container runtimes.
• Supports proxy configuration.
• Supports host networking.
• Supports IPv6 Networking.
• Allows creating multiple containerized scanners on one Linux Host, as long as the total resources allocated to the containerized scanner are within the Linux Host's resource limit. 
• Supports running in 64-bit mode exclusively when 32-bit binary execution is disabled on the Linux Host. 

• The contianerized scanner in 64bit only mode limits support for certain target technologies within its scanning capabilities.
• Avoid overcommitting resources, as it can cause the container or host to malfunction. For example, if you overcommit swap, insufficient swap space on the host may result in the guest operating systems being forcibly shut down, rendering them inoperable.