06-16-2009 08:24 AM
What does adding Qualys vulnerability scan data to MARS allow MARS, help MARS to do?
Does it help MARS identify an alert as a false positive in the context of a host which Qualys says isn't vulnerable OR does it do something else like when the Qualys data is retrieved simply listing each vulnerability as an incident?
06-16-2009 12:17 PM
My understanding was the Qualys would inform MARS if a system was really vulnerable or not based on it's (the qualys box) information of the situation.
Erric
07-15-2009 11:49 AM
I just made the configuration to day, it seems to work corectly, but I am wondering something. Does anyone has really estimated the real benefits of using qualysquard with Csmars ?
07-15-2009 12:45 PM
I haven't been able to set this up yet. If MARS is able to mark alerts which don't apply to a device as false positives or something like that it could be valuable because it would save the staff time hunting down false positives.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide