fjimenez This page contains information to create a Scorecard dashboard leveraging the AssetView interface and the data in your Qualys Vulnerability Management subscription.
This AssetView Dashboard will enable you to be more pro-active in your Open Ports Management.
Get a quick easy glance to KPIs for Open Ports.
Data packets travel to and from numbered network ports associated with particular IP addresses and endpoints, using the TCP or UDP transport layer protocols.
All ports are potentially at risk of attack because no port is natively secure. Each port and underlying service has its risks. The risk comes from the version of the service,
whether someone has configured it correctly, and, if there are passwords for the service, whether these are strong?
There are many more factors that determine whether a port or service is safe.
What makes these ports risky?
Total of 65,535 TCP ports and another 65,535 UDP ports!
TCP and UDP port protocols are used by protocols of the application layer,
of the Internet protocol suite for the establishment of host-to-host connectivity.
Port numbers are assigned in various ways, based on three ranges:
System Ports (0-1023)
User Ports (1024-49151)
Dynamic and/or Private Ports (49152-65535) (ephemeral ports)
See [RFC6335] for more info
Dashboard Demonstration Images:
*The Pre-built Dashboard JSON file can be found attached below ready for download & import into your Qualys subscription*
* * * Requirements * * *
The Dashboard requires the following Tags to be created for each as shown below,
and named exactly the same for the "Commonly Hacked Ports" Widget to work without any edits.
Example of Tags & Widget Structure:
|Evaluate all tags that have OPEN_PORTS tag rules.|
API Request: **Note the POD API url & the file.xml needs to be created**
POD 1: curl -u "USERNAME:PASSWORD" -H "content-type: text/xml" -X "POST" --data-binary @- "https://qualysapi.qualys.com/qps/rest/2.0/evaluate/am/tag" < file.xml
POD 2: curl -u "USERNAME:PASSWORD" -H "content-type: text/xml" -X "POST" --data-binary @- "https://qualysapi.qg2.apps.qualys.com/qps/rest/2.0/evaluate/am/tag" < file.xml
POD 3: curl -u "USERNAME:PASSWORD" -H "content-type: text/xml" -X "POST" --data-binary @- "https://qualysapi.qg3.apps.qualys.com/qps/rest/2.0/evaluate/am/tag" < file.xml
|Request POST data: file.xml|
|<?xml version="1.0" encoding="UTF-8" ?>|
Qualys - Training Videos:
POD - 1 - Apply Tags to Organize Your Assets
POD - 2 - Apply Tags to Organize Your Assets
POD - 3 - Apply Tags to Organize Your Assets
More to Come ...
Back to Dashboarding and Reporting