🍩
HackBook.io
  • Pentesting Pocket Book for hackers and developers.
  • Reconnaissance
    • Internal Recon Basics
    • OSINT
      • Infrastructure
      • Recon-ng
      • Users
      • Google Dorks
    • Active Scanning
      • NMAP
        • NSE
          • reconnoitre
        • NMap Evasion
      • NC Scan
      • Finger Printing
    • Web Server OSINT
      • WhatWeb
      • Subdomains
      • Directory & File Enumeration
        • Enumeration
          • GoCutty
          • gobuster
          • Dirb
          • nikto
        • Fuzzing
        • Crawling
  • Web Application Hacking
    • Web 101
      • Clients
      • Servers
      • Encodings
    • Web Hacking Techniques
      • SOP
      • Open Redirect
      • File & Resource Attacks
        • Directory Traversal
          • Dir Traversal Fuzzer
        • LFI
        • RFI
        • Unrestricted File Uploads
      • XSS
        • DOM
        • Stored
        • Reflected
        • Blind
        • Self XSS
      • XXE
        • XXE Payloads
      • XPath
      • SSRF
      • CSRF
      • SQLi
        • SQL Basics
        • Securing SQL
        • Hacking SQL
          • sqlmap
          • In-Band
          • Error Based
          • Blind
      • Authorization
      • Session Hijacking
      • Command Injection
      • Insecure Deserialization
      • File Uploads
        • File Upload Mitigations
      • HPP
      • Click Jacking
        • Adobe SWF Investigator
      • HTTP Response Splitting
      • Flash 101
        • Flash Hacking
      • HTML5
        • WebSockets
        • CORS
          • iframe
          • Headers
    • Web Hacking Procedures
      • Captcha
      • Username Generation
      • Username Enumeration
      • Inhouse WebApps
      • SSL Cert Generation
      • CMS
        • WordPress
        • Joomla
      • Popular Exploits
        • Bludit CMS
        • ShellShock
        • WebDav
  • Weaponization
    • Buffer Overflows (BOF)
      • DSBOFG
        • Scripts
  • Initial Access
    • 😈Services
      • Finger
      • SNMP
      • LDAP
      • SMTP
      • NFS
      • RPC
        • RPCBind
      • RDP
      • SQL
        • NoSQL
      • POP3
      • Samba
      • SMB
      • SSH
      • Telnet
      • NetBios
      • VOIP/SIP
      • DNS
        • DNS Lookups
        • Zone Transfer
        • SubDomain Enums
        • dnsdumpster
    • 😈Shells
      • Powercat
      • Odd Shells
      • Troubleshoot
      • TTY/PTTY
  • Persistence
    • File Transfers
      • Py->Exe->Txt
      • Cross compile example
    • Backdoors
  • Privilege Escalation
    • Universal Escalation
    • Windows Escalation
      • Automated
      • Popular Exploits
        • ActiveXObject to Wscript RCE
        • Macros
        • Object Linking
    • Linux Escalation
      • Automated
    • Passwords
      • John
      • Medusa
      • Cewl
      • ncrack
      • Crunch
      • Hydra
      • MITM
      • Responder
        • SAM
          • pwdump and fgdump
          • Pass-the-hash
      • Crack the hash
      • NTLM
  • Network Discovery
    • Network Traffic
      • tcpdump
    • Internal Discovery
  • Collection and Staging
    • Collection
      • File types
  • Hacking Objectives
    • Non Kinetic War (Quick Guide)
  • Procedures
    • Bash Guide
    • Active Directory
    • Crypto 101
    • Forensics
  • Glossary
  • Hacking Frameworks
    • Metasploit
      • msfvenom
    • Dsnif
  • ThreatModeling
    • Threat Modeling Overview
  • Certifications
    • VMDR
      • Qualys Asset Management
      • Qualys Vulnerability Management
      • Qualys Threat Prioritization
      • Qualys Response (Patch Deployment)
    • OSCP Cheat Sheet
  • RF - Radio Frequency
    • Ham Technician
Powered by GitBook
On this page
  • Qualys Patch Management (PM):
  • Deployment Jobs:

Was this helpful?

  1. Certifications
  2. VMDR

Qualys Response (Patch Deployment)

PreviousQualys Threat PrioritizationNextOSCP Cheat Sheet

Last updated 3 years ago

Was this helpful?

Qualys Patch Management (PM):

The Qualys app can be run on its own but when combined with VMDR, patch management becomes really easy and can easily be prioritized and automated on cadence from scan results.

Patch downloads come from CDNs and can quickly be pushed from anywhere. All patches are validated twice (at Download then again by Qualys Malware Insights). Patches will only be downloaded once and saved to the Qualys Gateway Service host and will be available for all assets that need it.

Limit of 2000 patches per job. Patches can only be pushed to licensed assets.

Patches with the key icon cannot be downloaded by Qualys and must be applied with other methods.

Some Patches cannot be rolled back by Qualys if something were to go wrong. These can be seen with a similar search.

Deployment Jobs:

First ensure the License are current for assets Configuration->License->select tags. This will show what assets will be available in PM.

From the Jobs tab in PM,

  1. Create Jobs->Deployment Job

  2. Fill in the Job name and description

  3. Select assets by name or using tags

  4. Go to Patch Selector and select the needed patches. Filter out old patches with (isSuperseded: false). Only patches in scope of the assets will be displayed by the Patch Selector. You can also filter down if you do not want to push all patches.

  5. Schedule a Deployment Job (demand, weekly, monthly)

  6. Select the Communication Option. This is the setting for various endpoint countdown clocks and annoyance to have the patch accepted by the user.

  7. Job access Permissions: Which users can edit this job.

  8. Confirmation/Review

Patch Jobs have 3 states, Enabled, Disabled, Completed. Further details and actions can be seen/done with the quick actions drop down for the job.