Qualys Enhances Host List API for Faster, More Accurate Scans
Qualys, a leading provider of cloud-based security and compliance solutions, has introduced updates to its Host List API. This API, which serves as a programmatic driver for automation, determines the scope of assets scanned for Vulnerability Management (VM) and Policy Compliance (PC). The updates focus on improving performance and data accuracy.
The Host List API now supports two types of extracts: full extract and incremental update. Incremental updates should be performed in line with the Host List Detection download to ensure data is up-to-date. This approach reduces the need for frequent full updates, which are now recommended no more than once per month.
The Host List itself is an inventory of assets scanned via Qualys Vulnerability Management (VM) and Policy Compliance (PC), including on-premises, endpoint, and cloud assets. It contains up-to-date information on when a host was last scanned for both VM and PC. The primary unique key of each host is ID, also referred to as HOSTID.
To improve performance, Qualys recommends storing Host List data local to applications. Additionally, the ETL (Extract, Transform, and Load) design pattern can be used to transform Qualys API data into a format suitable for an organization. Other information updated in the Host List includes metadata from Amazon, Azure, or Google Cloud.
The updates to the Qualys Host List API aim to enhance performance and data accuracy. By supporting incremental updates and recommending best practices for data storage and transformation, Qualys continues to provide robust and efficient security and compliance solutions.
