Retest Findings
Click to view navigation pane


Retest Findings

[POST] /qps/rest/3.0/retest/was/finding

[POST] /qps/rest/3.0/retest/was/finding/<id>

You can now easily retest the findings for individual vulnerabilities using Finding API to test the selected finding. Only potential vulnerabilities, confirmed vulnerabilities and sensitive contents are available for retest.

Permissions required - User must have WAS module enabled. User account must have these permissions: Access Permission “API Access” and "WAS.VULN.RETEST" permission. The output includes findings for web applications in the user's scope.

Input ParametersInput Parameters

The element “id” (integer) is required, where “id” identifies a finding (WebAppVuln, WebAppIg, or WebAppSensitiveContent).

Click here for available operators

Sample - Retest Finding using XML RequestSample - Retest Finding using XML Request

API request

curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding"

Request POST data

<ServiceRequest>
    <data>
        <Finding>
            <id>1728792</id>
        </Finding>
    </data>
</ServiceRequest>

XML response

<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse
    xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd" >
    <responseCode>SUCCESS</responseCode>
    <count>1</count>
    <data>
        <Finding>
            <id>1728792</id>
            <uniqueId>2a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
        </Finding>
    </data>
</ServiceResponse>

Sample - Using Finding IDSample - Using Finding ID

API request

curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding/1728792"

XML response

<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd"
    <responseCode>SUCCESS</responseCode>
    <count>1</count>
    <data>
        <Finding>
            <id>1728792</id>
            <uniqueId>8a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
        </Finding>
    </data>
</ServiceResponse>

Sample - Retest a finding using uniqueIdSample - Retest a finding using uniqueId

API request

curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding/8a2c4d51-6d28-2b92-e053-2943720a74ab"

XML response

<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd"
    <responseCode>SUCCESS</responseCode>
    <count>1</count>
    <data>
        <Finding>
            <id>1728792</id>
        </Finding>
        <uniqueId>8a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
    </data>
</ServiceResponse>

XSD

<platform API server>/qps/xsd/3.0/was/finding.xsd