Retest Findings
You can now easily retest the findings for individual vulnerabilities using Finding API to test the selected finding. Only potential vulnerabilities, confirmed vulnerabilities and sensitive contents are available for retest.
Permissions required: User must have WAS module enabled. User account must have these permissions:
- Access Permission: API Access
- WAS.VULN.RETEST permission
The output includes findings for web applications in the user's scope.
Input ParametersInput Parameters
The element “id” (integer) is required, where “id” identifies a finding (WebAppVuln, WebAppIg, or WebAppSensitiveContent).
Sample - Retest Finding using XML RequestSample - Retest Finding using XML Request
API request:
curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding"
Request POST data:
<ServiceRequest>
<data>
<Finding>
<id>1728792</id>
</Finding>
</data>
</ServiceRequest>
XML response:
<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd" >
<responseCode>SUCCESS</responseCode>
<count>1</count>
<data>
<Finding>
<id>1728792</id>
<uniqueId>2a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
</Finding>
</data>
</ServiceResponse>
Sample - Using Finding IDSample - Using Finding ID
API request:
curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding/1728792"
XML response:
<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd"
<responseCode>SUCCESS</responseCode>
<count>1</count>
<data>
<Finding>
<id>1728792</id>
<uniqueId>8a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
</Finding>
</data>
</ServiceResponse>
Sample - Retest a finding using uniqueIdSample - Retest a finding using uniqueId
API request:
curl -n -u "USERNAME:PASSWORD" "<qualys_base_url>/qps/rest/3.0/retest/was/finding/8a2c4d51-6d28-2b92-e053-2943720a74ab"
XML response:
<?xml version="1.0" encoding="UTF-8"?>
<ServiceResponse xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> xsi:noNamespaceSchemaLocation="<qualys_base_url>/portal-api/xsd/3.0/was/finding.xsd"
<responseCode>SUCCESS</responseCode>
<count>1</count>
<data>
<Finding>
<id>1728792</id>
</Finding>
<uniqueId>8a2c4d51-6d28-2b92-e053-2943720a74ab</uniqueId>
</data>
</ServiceResponse>
XSD
<platform API server>/qps/xsd/3.0/was/finding.xsd