Qualys Reporting Strategies and Best
Practices (Exam)
In the patch report template, which evaluation provides the most accurate patches that need to be
installed?
(A) Superseded patch evaluation
(B) Latest patch evaluation
(C) QID based patch evaluation
(D) Classic patch evaluation – \u2714\u2714(A) Superseded patch evaluation
Which scorecard report type allows you to identify hosts that are missing required patches and
software?***
(A) Patch report
(B) Vulnerability scorecard report
(C) Missing software report
(D) Asset Search Report – \u2714\u2714(A) Patch report
Which of the following scenarios can lead to gaps in the patch tree structure and break the patch
supersedence logic? Select all that apply.
(A) Scan report with vulnerability search list or Threat Protection RTI filter<\/p>\n\n\n\n
(B) Cloud Agent data collection followed by an authenticated scan Stale asset and vulnerability data can affect your security risk and business risk calculations. *** Qualys Patch Management (Course Quizzes) Which of these actions is commonly performed after deploying patches? QUALYS VMDR TRAINING Which of the following items are used to calculate the Business Risk score for a particular asset Qualys Web Application Scanning (EXAM) (D) Common input parameters – \u2714\u2714(B) QIDs from the QualysBase Qualys Cloud Agent Exam (A) Agent attempts to connect to the Qualys Platform (with valid CustomerID and Qualys Patch Management (PM) Exam (A) stdeploy.exe Qualys Vulnerability Management v1 What type of scanner appliance (already provisioned within the Qualys Cloud Platform) is ideal Qualys Reporting Strategies and BestPractices (Exam)In the patch report template, which evaluation provides the most accurate patches that need to beinstalled?(A) Superseded patch evaluation(B) Latest patch evaluation(C) QID based patch evaluation(D) Classic patch evaluation – \u2714\u2714(A) Superseded patch evaluationWhich scorecard report type allows you to identify hosts that are missing required patches andsoftware?***(A) Patch report(B) […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[25],"tags":[],"class_list":["post-117013","post","type-post","status-publish","format-standard","hentry","category-exams-certification"],"_links":{"self":[{"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/posts\/117013","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/comments?post=117013"}],"version-history":[{"count":0,"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/posts\/117013\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/media?parent=117013"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/categories?post=117013"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.learnexams.com\/blog\/wp-json\/wp\/v2\/tags?post=117013"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}
(C) Scan job with a custom vulnerability filter
(D) Unauthenticated scan
(E) Cloud Agent scan – \u2714\u2714(A) Scan report with vulnerability search list or Threat Protection
RTI filter
(C) Scan job with a custom vulnerability filter
Identify the vulnerability types excluded by default in the VM\/VMDR Dashboard. Select all that
apply.***
(A) Fixed vulnerabilities
(B) Disabled or Ignored vulnerabilities
(C) Vulnerabilities without exploits
(D) Low severity vulnerabilities
(E) Vulnerabilities without patches – \u2714\u2714(A) Fixed vulnerabilities
(B) Disabled or Ignored vulnerabilities
The __<\/strong><\/em><\/strong> vulnerability type is enabled by default in a new report template.
(A) Confirmed
(B) Potential
(C) Patched
(D) Information Gathered – \u2714\u2714(B) Potential<\/p>\n\n\n\n
(A) False
(B) True – \u2714\u2714(B) True
Adding non-Qualys user’s email in the distribution group helps you distribute the scheduled
report to such users. ***
(A) True
(B) False – \u2714\u2714(A) True
When using host-based findings, which of these needs to be turned on to toggle the inclusion of
Fixed vulnerabilities in the report?* (A) Trending (B) (C) (D) – \u2714\u2714(A) Trending Which finding type allows you to include trending data in your reports?<\/strong>*
(A) Scanner based findings<\/p>\n\n\n\n
Which of these is a reason for using a Patch Management solution?
(A) To monitor logs on the asset
(B) To scan for viruses
(C) To close open ports and services
(D) To address vulnerabilities – \u2714\u2714(D) To address vulnerabilities
Which of these Qualys solutions would you use to address vulnerabilities on your assets?
(A) Vulnerability Management
(B) Patch Management
(C) Endpoint Detection and Response
(D) Policy Compliance – \u2714\u2714(B) Patch Management
Which of these sensors does Qualys use to deploy patches?
(A) Scanner appliances
(B) Cloud connectors
(C) Passive sensor
(D) Cloud agent – \u2714\u2714(D) Cloud agent<\/p>\n\n\n\n
(A) Asset is decommissioned
(B) Asset is scanned
(C) Asset is rebooted
(D) Asset is reimaged – \u2714\u2714(C) Asset is rebooted
Which of these is a recommended approach to patching assets?
(A) Uninstall old patches and apply new
(B) Do not apply patches unless necessary
(C) Apply patches on a set of test assets, verify that the patches do not cause issues, and patch
the remaining assets
(D) Apply patches on all assets right away – \u2714\u2714(C) Apply patches on a set of test assets, verify
that the patches do not cause issues, and patch the remaining assets
Qualys Patch Management correlates missing patches with vulnerabilities.
(A) False
(B) True – \u2714\u2714(B) True
Which of these is true about Qualys Patch Management?<\/p>\n\n\n\n
Which of the following are benefits of scanning in authenticated mode? (choose 2) – \u2714\u2714<\/p>\n\n\n\n\n
Which of the following are valid options for scanning targets? (choose 3) – \u2714\u2714<\/li>\n\n\n\n
What type of scanner appliance (already provisioned within the Qualys Cloud Platform) is ideal
for scanning public facing assets? – \u2714\u2714External Scanner
Which of the following is NOT a component of a vulnerability scan? – \u2714\u2714Host Discovery
Which of the following will have the greatest impact on a half red, half yellow QID? –
\u2714\u2714Authentication
What is the maximum number of TCP ports that can participate in the Host Discovery process? –
\u2714\u271420<\/li>\n<\/ol>\n\n\n\n
group? (choose 2) – \u2714\u2714Business Impact
Security Risk
In order to successfully perform an authenticated (trusted) scan, you must create a(n): –
\u2714\u2714Authentication record
Multiple Remediation Policies are evaluated: – \u2714\u2714from top to bottom
A search list contains a list of . – \u2714\u2714QIDs
Dynamic Asset Tags are updated every time you. – \u2714\u2714Run a scan
As a Manager in Qualys, which activities can be scheduled? – \u2714\u2714Asset Searches
Updates to the KnowledgeBase
Maps
Reports
Scans
What does it mean when a “pencil” icon is associated with a QID in the Qualys KnowledgeBase?<\/p>\n\n\n\n\n
The Malware Monitoring option should only be enabled for:
(A) Applications with a “malware” tag
(B) Internal facing applications
(C) External facing applications
(D) Both internal and external facing applications – \u2714\u2714(C) External facing applications
Where can you “Ignore” a vulnerability for a Web Application? (select two) (Choose all that
apply)
(A) Scorecard Report
(B) Scan Report
(C) Web Application Report
(D) Detections Tab – \u2714\u2714(B) Scan Report
(D) Detection Tab
A Search List contains a list of:
(A) Username\/Password combinations
(B) QIDs from the Qualys KnowledgeBase
(C) Crawling hints<\/p>\n\n\n\n
When launching a Web Application Scan, you have the option to override some default settings.
Which of the following options can NOT be overridden?
(A) Option Profile
(B) Crawl Scope
(C) Scanner Appliance
(D) Authentication Record – \u2714\u2714(D) Authentication Record
What attack proxies can you integrate with Qualys WAS?
(A) BURP
(B) W3af
(C) ZAP
(D) WebScarab – \u2714\u2714(A) BURP
How can you get your scan to follow a business workflow (such as a shopping cart transaction)?
(A) Use a Selenium Script to record and replay the workflow
(B) Use a Custom Authentication Record
(C) Use a Crawl Exclusion List
(D) Use DNS Override – \u2714\u2714(A) Use a Selenium Script to record and replay the workflow<\/p>\n\n\n\n
Identify the Qualys application modules that require Cloud Agent. (Choose all that apply)
(A) EDR
(B) VM
(C) PM
(D) FIM – \u2714\u2714(A) EDR
(C) PM
(D) FIM
A Cloud Agent status indicates the agent uploaded new host data, and an assessment of the host
was performed within the Qualys Cloud Platform. Which one from the following options is it?
(A) Scan Complete
(B) Provisioned
(C) Manifest Downloaded
(D) Configuration Downloaded – \u2714\u2714(A) Scan Complete
From all the tasks associated with the Provisioning stage, identify the one that is not among
them.<\/p>\n\n\n\n
AcctivationID)
(B) Agent performs an initial assessment scan
(C) Agent is validated by the Qualys platform
(D) Agent generates its Qualys Host ID or re-provisions its Qualys Host ID for cloned images –
\u2714\u2714(B) Agent performs an initial assessment scan
Recall and state the task that is NOT performed by Cloud Agent.
(A) Check-in to the Qualys Platform at regular intervals
(B) Transfer data payloads to the Qualys Platform
(C) Assessment Testing
(D) Data collection – \u2714\u2714(C) Assessment Testing
The VM Scan Interval option of the Configuration Profile allows you to perform which task?
(A) Configure frequency for SCA scan
(B) Configure frequency for VM scan
(C) Configure frequency for policy compliance scan
(D) Configure Agent status interval – \u2714\u2714(A) Configure frequency for SCA scan
Identify the query that will help you find agents that have not checked-in within the last 7 days.<\/p>\n\n\n\n
Using the “Search” field (found in the VULNERABILITIES section of the VM Dashboard),
which query will produce a list of “patchable” vulnerabilities?
(A)vulnerabilities.vulnerability.qualysPatchable:TRUE
(B)vulnerabilities.vulnerability.qualysPatchable:FALSE
(C)vulnerabilities.vulnerability.isPatchable:FALSE
(D)vulnerabilities.vulnerability.isPatchable:TRUE –
\u2714\u2714(D)vulnerabilities.vulnerability.isPatchable:TRUE
Which of the following conventions can be used to include or assign host assets to a job? (choose
2) (Select all that apply)
(A) Asset Name
(B) Asset Group
(C) Business Unit
(D) Asset Tag – \u2714\u2714(A) Asset Name
(D) Asset Tag
The __<\/em><\/strong> process is responsible for installing and uninstalling patches, included in patch
jobs you create.<\/p>\n\n\n\n
(B) Qualys Cloud Agent
(C) notify.exe
(D) Qualys Cloud Agent UI – \u2714\u2714(B) Qualys Cloud Agent
What does it mean, when a patch is displayed with a “key-shaped” symbol?
(A) The patch is a key requirement for the deployment of other patches.
(B) The patch cannot be downloaded by Qualys Cloud Agent.
(C) The patch has been deprecated.
(D) The patch cannot be uninstalled. – \u2714\u2714(B) The patch cannot be downloaded by Qualys Cloud
Agent.
Within a PM Assessment Profile, what is the minimum value, for patch assessment frequency?
(A) 24 hours
(B) 4 hours
(C) 12 hours
(D) 1 hour – \u2714\u2714(A) 24 hours
Which of the following Qualys applications or services, provide the ability to create a patch job?
(choose 3) (Choose all that apply)<\/p>\n\n\n\n
Which of the following are benefits of scanning in authenticated mode? (choose 2)<\/p>\n\n\n\n\n
Which of the following are valid options for scanning targets? (choose 3).<\/li>\n\n\n\n
for scanning public facing assets?<\/p>\n\n\n\n\n
\n
\n
Which of the following will have the greatest impact on a half red, half yellow QID?<\/li>\n\n\n\n
What is the maximum number of TCP ports that can participate in the Host Discovery process?<\/li>\n<\/ul>\n\n\n\n
<\/p>\n","protected":false},"excerpt":{"rendered":"