I'm seeking to understand how Qualys does it's IP randomization when scanning. I understand that when we use the parallelization feature it will go sequentially though the prescribed IP block for the scan, but when using a single scanner, it will switch to randomly selected IPs.
For example, if it's 2 Class B's of space, we will see IPs from all over those two blocks. When using parallellization however it starts at .1 and then .2, etc.
Our preference is randomization so as not to saturate a segment, but would like to understand further to explain to my business customers.