Dashboarding and Reporting

Document created by DMFezzaReed Employee on Jun 20, 2018Last modified by DMFezzaReed Employee on Nov 4, 2018
Version 74Show Document
  • View in full screen mode

Welcome to Dashboarding and Reporting

 

Welcome to our Dashboarding and Reporting space.  Here we will begin to collaboratively and constructively collect relevant legacy posts into a central location for ease of access, as well as adding a variety of new resources, to include but not limited to, reference documents, dashboard and widget json files, demonstration dashboards, reporting search lists, reporting methodologies and techniques, dashboard and reporting training sessions and videos, etc...  So, let's get started!

 

Dashboard Toolbox: Dashboards and Widgets are Application Module Specific New Jul 24, 2018

 

Search Community Labels to Find Relevant Posts

Did you know you could search the labels applied to the posts within the community? Please click on a tag below to pull a list of relevant resources within our community.

 

New Dashboard Tags:

dashboard_ideation

dashboard_toolbox

dashboard_howto

dashboard_features New Jul 16, 2018

dashboard_query New Oct 19, 2018

New VM Dashboard BETA vmdb_beta vmdb_bug New Jul 12, 2018 vmdb_bug_fixed  New Jul 23, 2018

       AssetView Dashboard dashboard_assetview New Oct 9, 2018

 

New QQL Tags:

qql_bug New Aug 15, 2018

qql_bug_fixed New Aug 15, 2018

 

 

New Reporting Tags:

reporting_ideation

reporting_toolbox

reporting_howto

reporting_features NeJul 16, 2018

 

 

Training Resources

New Self-Paced Class: Reporting Strategies and Best Practices on Vimeo New Aug 20, 2018 

 

Recommended Resources

WARNING:  At this time, Dashboard and Widget JSON files are not interchangeable between application dashboards, meaning AssetView json files may only be used in AssetView and Vulnerability Management json files may only be used in Vulnerability Management.  If you make a mistake and import a json file from one application into the other, you must contact Qualys Support to have the error corrected in the database for your subscritpion.  Again, there is no way to reverse this mistake within the UI, it must be done in the database.

        

Qualys reporting is not designed for large-scale data exports; Qualys provides custom APIs for that; Reporting is intended to generate human-readable reports, not for exporting every vulnerability from a subscription. The art of creating useful, human-readable, reports (easy to: read, understand and prioritise) is accomplished by leveraging reporting templates configured with:   

  • targeted assets groups and/or tags (vs All), and, 
  • leveraging focused search lists and/or queries.

Dashboarding

dashboard_features dashboard_howto dashboard_ideation dashboard_toolbox vmdb_beta  dashboard_assetview dashboard_query

Reporting

reporting_features reporting_howto reporting_ideation reporting_toolbox

Discrepancy Management

discrepancy_mgmt

Dashboard Toolbox - New Vulnerability Management (VM) Dashboard BETA   

The New Vulnerability Management (VM) Dashboard BETA program is not intended for production use, and its content is subject to modification without notice. If you have any questions regarding the content, please contact your Technical Account Manager (TAM) or Contact Support - Technical Assistance Inquiry Form | Qualys, Inc.                     

                                                              
New REPORTING TOOLBOX: New Self-Paced Class: Reporting Strategies and Best Practices New Aug 20, 2018Such Wild Differences From Asset Search and AssetView    Added Aug 1, 2018

Dashboard Toolbox - VM DASHBOARD BETA: Issue Reporting 

Reporting Toolbox - Trust, but Verify: Focused Search ListsAsset Discrepancy Added Aug 1, 2018
Dashboard Toolbox - VM DASHBOARD BETA - Bug: DiscrepanciesCVE Report Purging: What, why, when, how, what happens to the data? Added Aug 21, 2018

Dashboard Toolbox - Improving Dashboard Performance through Query Formatting

Leveraging CVEs for Reporting and Analysis Understanding Entity IDs in VM Added Aug 21, 2018
Dashboard Toolbox - VM DASHBOARD BETA - Bug: vulnerabilities.status token options [FIXED] Updated Jul 23, 2018Creating a Spectre/Meltdown Search Lists, Scan Option Profile, Remediation Tracking and Patch Reports What's the API to list all Asset ID's Added Aug 28, 2018
Dashboard Toolbox - VM DASHBOARD BETA - Bug: Vulnerability Detail Content Inaccuracies New Jul 31,2018Reporting Toolbox - Best Practice: Always Report on EOL Product QIDs 

Looking for syntax, variable, and object Guide for Qualys queries New Aug 08, 2018

How Do I Export Comments from Remediation Tickets ?  
Dashboard Toolbox - VM DASHBOARD BETA - Bug: vulnerabilities.vulnerability.exploitability token [OPEN] New Aug 15, 2018How do I generate a report of vulnerabilities fixed in a specific period of time? 
Dashboard Toolbox - VM DASHBOARD BETA - FYI: vulnerabilities.vulnerability.published token [OPEN] New Aug 15, 2018Asset Tags: Are You Getting The Best Value? 
Dashboard Toolbox - AssetView: EOL AssetView Widget Added Aug 20, 2018Reporting Toolbox: Known Issue with Scorecard Most Vulnerable Hosts Top X Reports
Dashboard - Vulnerabilities by asset group Added Aug 21, 2018

Qualys Severity Score vs CVSS Scoring  Added Jul 26, 2018

 

Dashboards and Reporting: Apache Struts RCE Vulnerabilities: CVE-2017-5638 and CVE-2018-11776 New Aug 23, 2018

Exploitable unauthenticated vulnerabilities  Added Aug 2, 2018

Dashboard Toolbox - VM DASHBOARD BETA: Mapping of Dynamic Search List Criteria to Dashboard Tokens  New Sep 11, 2018

Create Dynamic Tag finding specific aws tagged instances using API Added Aug 2, 2018

Dashboard Toolbox - VM DASHBOARD BETA: How to Create a Query to Track Microsoft Windows Security Update Monthly Patch Release Risk New Sep 19, 2018

Emailing Reports Added Aug 10, 2018

Dashboard Toolbox - NEW IG QIDs for Microsoft OS...Enrich Your Queries New Oct 19, 2018

Best Practice Subscription Maintenance: Opt-In Vulnerability Management Asset Housekeeping Subscription Support Options New Aug 20, 2018

Reporting Toolbox: Creating Dynamic Search Lists via APIv2 New Aug 20, 2018

Best Practice for Executive Reporting Added Aug 21, 2018

Threat Protection Module Added Sep 07, 2018

Simple Report "Host Not Alive"? Added Sep 14, 2018

Reporting Toolbox: Mean Time To Remediation (Basic)  New Oct 1, 2018

 

WARNING:  At this time, Dashboard and Widget JSON files are not interchangeable between application dashboards, meaning AssetView json files may only be used in AssetView and Vulnerability Management json files may only be used in Vulnerability Management.  If you make a mistake and import a json file from one application into the other, you must contact Qualys Support to have the error corrected in the database for your subscription.  Again, there is no way to reverse this mistake within the UI, it must be done in the database.

    

 

AssetView Dashboards: 

Dashboard Toolbox - AssetView: EOL AssetView Widget Added Oct 9, 2018

Dashboard Toolbox - AssetView: Host Scan Time Management (v1.0) Added Oct 6, 2018

Dashboard Toolbox - AssetView: Open Ports Management & RTI (v1.0) Added Oct 8, 2018

Dashboard Toolbox - AssetView: Scanning Activity Management (v1.0) Added Oct 6, 2018

Dashboard Toolbox - Asset View: How To - Importing Dashboard json Added Oct 11, 2018

Dashboard Toolbox - AssetView: Performance Management (v1.0) Added Oct 5, 2018

Dashboard Toolbox - AssetView: Windows Authentication Management (v1.2) Added Oct 11, 2018

 

 

 

 

Please feel free to comment and make suggestions for content below.  DMFezzaReed will review and acknowledge both a minimum of once each week.

1 person found this helpful

Attachments

    Outcomes