Qualys Integration
Integration with the Qualys Cloud Platform including VMDR, Policy Compliance, and Global AssetView. Piscium ingests Qualys vulnerability detections and asset inventory data, validates which findings represent exploitable paths, and enriches Qualys TruRisk scores with confirmed exploitation evidence.
What You Get
Integration with the Qualys Cloud Platform including VMDR, Policy Compliance, and Global AssetView. Piscium ingests Qualys vulnerability detections and asset inventory data, validates which findings represent exploitable paths, and enriches Qualys TruRisk scores with confirmed exploitation evidence.
Why Qualys?
Qualys VMDR provides comprehensive vulnerability detection and asset visibility. Piscium adds the missing validation layer — confirming which Qualys findings are exploitable in your specific network topology and business context. This transforms Qualys from a detection tool into a validated risk management system.
Example Scenario
Qualys VMDR detects 1,800 QIDs across a manufacturing plant's converged IT/OT network. Piscium ingests these detections and runs autonomous validation. The AI agents confirm that 38 findings are exploitable, including a chain from an IT-side SQL injection through a poorly segmented firewall into an OT engineering workstation running vulnerable WinCC software. Piscium pushes validated risk data back to Qualys, elevating the TruRisk score for the affected asset group and triggering the patch orchestration workflow.
Implementation Notes
Requires Qualys API credentials with VM Detection and Asset Management API access. Supports Qualys US Platform 1, US Platform 2, EU, and private cloud pods. Piscium correlates assets using IP address, NetBIOS name, and Qualys host ID. Scan result ingestion can be scheduled or triggered on-demand. Recommended: create a dedicated Qualys API user with read-only VM access.
Webhook Payload Example
{
"event": "exposure.validated",
"timestamp": "2026-03-09T13:22:00Z",
"exposure_id": "EXP-2026-00319",
"severity": "high",
"cvss_score": 8.6,
"cve": "CVE-2025-22457",
"affected_asset": "eng-ws-04.plant.corp.local",
"qualys_host_id": 48291037,
"qualys_qid": 376142,
"attack_path_id": "AG-0812",
"blast_radius": 9,
"remediation_status": "pending"
}Ready to Connect Qualys?
See the integration running live in your environment.