A new release of Qualys Cloud Suite, Version 2.28 (this version # is equivalent to Web Application Scanner v5.6), includes an updated API which is targeted for release in July 2017. The specific day will differ depending on the platform. See platform release dates on the Qualys Status page. This API notification provides an early preview into the coming API, allowing you to identify use cases that can leverage this updated API. The release notes are attached at the end of this notice.
Whats New in WAS 5.6
WAS - Generating Reports using templates
With our new Reporttemplate API, you can search for existing templates as well as get the details of an existing template. You can also use templates to generate reports through API, such as web application report, scan report, catalog report, and scorecard report.
WAS - Retest findings
You can now easily retest the findings for individual vulnerabilities using Finding API to test the selected finding. Only potential vulnerabilities, confirmed vulnerabilities and sensitive contents are available for retest.
WAS - Launch multiscan
We've enhanced the ability to support large web application scanning programs by adding the ability to scan any number of web applications as a Multi-Scan through API. This feature enables you to scan hundreds or even thousands of web applications you may have in your organization with granular insight into what scans are running and which ones are complete.
WAS - Schedule a multiscan
You can now schedule a Multi-Scan through API to run automatically, on a regular basis. This way you always have the most up-to-date security information in your account.
A Multi-Scan allows you to scan any number of web applications. This feature enables you to scan hundreds or even thousands of web applications you may have in your organization with granular insight into what scans are running and which ones are complete.
WAS - Enhanced tag selection
We have now enhanced our support for selection of assets linked to the tags when you launch a scan, create or edit a schedule, generate or schedule a Scorecard report or Web application report. You can now tell us the tag id in the request and specify if any or all the assets associated with the tag should be included or excluded in the scan result or report.