Scan for Vulnerabilities

Vulnerability scanning allows you to continuously detect software vulnerabilities across your network. Quickly scan for known vulnerabilities on your assets and get recommended fixes.

New to scanning?

You'll want to think about what you want to scan and how you want to do it. We suggest you review the content in Scanning - The Basics for recommended first steps, common terms, and things to think about before you get started.

Steps to Take Before You Scan

There are some steps you'll want to complete in your account to get ready for scanning.

Step 1: Install Scanners and Agents

Think about how you want to perform scans. It's common for organizations to use a mix of scanner appliances and cloud agents to meet their vulnerability assessment needs.

Step 2: Identify Hosts to Scan

To fix vulnerabilities, you must first understand what assets (servers, desktops, devices, etc) you have in your network. Once you know what you have, add them to your account by IP address (under Assets > Host Assets) so you can scan them. Not sure what you have? Run maps to discover your assets and use workflows in map results to add discovered assets to your account.

Step 3: Configure and Enable Authentication

For vulnerability scanning, authentication is not required but it is recommended. Using authentication allows our service to log in to each target system during scanning to perform in depth security assessment and get better visibility into each system's security posture.

Step 4: Set Up Search Lists

You can skip this step if you plan to run Complete scans where we check for all vulnerabilities applicable to each target host. There may be times, however, when you want to limit scans to a smaller set of vulnerabilities. To do this, you'll need to set up search lists, and then add those search lists to your scan option profile.

Step 5: Customize Scan Settings in Option Profiles

An option profile includes the scan settings that you'll apply to a scan job, such as whether to run a complete or custom scan, whether to use authentication, which ports to scan, and much more.

Start Your Scan

Now that you have everything set up (assets, scanners, option profiles, authentication records, etc), you're ready to scan. There are different types of vulnerability scans you can run depending on the scan target.

Go to VM/VMDR > Scans > Scans > New menu to see the types of vulnerability scans available in your subscription. You can also schedule scans if you want scans to run on a recurring basis or at a later time.

Note - Some of the scan types listed below may not be enabled for your subscription.

Vulnerability Scan - Launch a vulnerability scan on your host assets to identify vulnerabilities and understand your security risk.

Cloud Perimeter Scan - Scan the public DNS or IP of your EC2 or Azure instances using Qualys External scanners.

Scan Schedules - Schedule your scans to run on a recurring basis or at a later time.

Check Scan Status

You can return to the Scans list any time to check on the scan status. You'll see status icons next to each scan in the list to indicate if the scan is Running, Finished, Paused, etc. Select any scan row and view the Preview pane below the list for more scan summary details.

View Scan Results

When your scan is Finished, go to the Scans list and select View from the Quick Actions menu to see the detailed results. Download scan results by selecting Download from the Quick Actions menu.

Additional References

Scanning - The Basics - Get help with scan targets, best practices, scan options and common terms.

Manage Your Scans - Learn how to check your scan's progress, view and download scan results, cancel scans, plus much more.

Download the Scans List - You can download any data list within the UI in order to view your configurations outside of the product.

Do you have AGMS?

Please see the AGMS Help to understand changes you'll see when Asset Group Management Service (AGMS) is enabled for your subscription.