Automation and Integration Scripts for Qualys Cloud Security offerings

The Qualys Cloud Platform, with its active scanning (Scanner), always-on agents (Cloud Agent), cloud visibility connectors (Connector), provides global enterprises with unprecedented 2-second visibility of their cloud infrastructure.

1. Pre-authorized virtual scanner: The Qualys Virtual Scanner Appliance extends the reach of the Qualys Cloud Platform into the internal networks of Amazon VPC. This "Pre-Authorized Scanning" version of the virtual scanner is for use with the "EC2 Scanning" workflow within the Qualys Vulnerability Management solution

2. Cloud Agent: A lightweight agent that does continuous assessment of your environment for security and compliance.

3. Connector: The Qualys Connector continuously discovers assets using an API integration. Connectors may be configured to connect to one or more accounts/subscriptions/projects so they can automatically detect and synchronize changes to inventories across your Cloud.

As part of our broader efforts to assist our customers to adopt cloud and secure it at rapid pace, we have other process automations.

• AWS_CV_Connector_CSV - This helps you to do a CSV import of AWS Accounts to create Cloudview connectors.
• AWS_CV_Connector_CloudFormation - This helps you to create cross-account role trust, assign Security Audit Policy, and CloudView Connector using a CloudFormation Template that can be run in AWS account.
• AWS_Connector_CSV - This helps you to do a CSV import of AWS Accounts to create connectors.
• AWS_Connector_CloudFormation - This helps you to create cross-account role trust, assign Security Audit Policy, and a Connector using a CloudFormation Template that can be run in AWS account.
• AWS_Scanner_CloudFormation - This helps you to create a pre authorized scanners using a CloudFormation Template that can be run in AWS account.
• AZURE_Connector_CSV - This helps you to do a CSV import of Azure subscriptions to create connectors.
• AWS_Cloud_Agent_SSM - This helps you to deploy Cloud Agent across your AWS System Manager (SSM managed) managed instances using SSM.
• Cloud_Agent_Ansible - This helps you to deploy Cloud Agent across your Linux instances in any cloud.
• AWS_Cloud_Agent_UserdataScripts - This helps you to deploy Cloud Agent across your instances using user data scripts.
• AWS_Cloud_Agent_CodePipeline - This helps you to deploy Cloud Agent across your instances using Ansible Playbook added in repository as Configuration management or Continuous Delivery.
• AWS_Cloud_Agent_Bootstrap - This helps you to deploy Cloud Agent across your instances while its launching using AWS CloudWatch, Lambda & SSM Doc for Bootstrap.
• AZURE_Cloud_Agent_AutomationAccount - This helps you to deploy Cloud Agent across your virtual machines using Azure Automation and Run command.
• AWS_BeanStalk_Cloud_Agent_Ebextensions - This helps you to deploy Cloud Agent across your Elastic Beanstalk instances using yaml config file in .ebextensions folder.
• AWS_Golden_Ami_Pipeline - This helps you to create a Golden AMI Pipeline integrated with a pre authorized scanner for vulnerability assessments.
• CloudView_Splunk_Scripted_Inputs - This helps you to integrate CloudView via python scripted inputs into Splunk Enterprise
• CloudView-Connector-Azure - This helps you to deploy Azure Connector(s) in CloudView using Management Group or ARM Template
• CloudView-Connector-GCP - This helps you to deploy GCP Connector(s) in CloudView using python to onboard GCP organization or projects in a CSV
• CloudAgent-Azure-ARMTemplate - This will help you to install Cloud Agent (CA) on Azure Linux or Windows VM using VM extension through ARM Template
• slack_cloudview_alerts - This helps you to integrate CloudView Assessment data into Slack for alerting

we would like to thanks the contributors of various scripts under this project.

• Mikesh Khanal
• Sean Nicholson
• Alex Mandernack
• Hari Srinivasan
• Vishal Vetal
• Sadanand Nerurkar

THIS SCRIPT IS PROVIDED TO YOU "AS IS." TO THE EXTENT PERMITTED BY LAW, QUALYS HEREBY DISCLAIMS ALL WARRANTIES AND LIABILITY FOR THE PROVISION OR USE OF THIS SCRIPT. IN NO EVENT SHALL THESE SCRIPTS BE DEEMED TO BE CLOUD SERVICES AS PROVIDED BY QUALYS.