Home
Mapping Frameworks
Azure Home
Integrated Vulnerability Scanner Powered by Qualys

Azure integrated_vulnerability_scanner_powered_by_qualys Mappings

This control provides a on-demand and scheduled vulnerability scan for Windows and Linux endpoints that are being protected by Azure Defender. The scanner generates a list of possible vulnerabilities in Azure Security Center for possible remediation.

Mappings

Capability ID	Capability Description	Category	Value	ATT&CK ID	ATT&CK Name	Notes
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1189	Drive-by Compromise	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1190	Exploit Public-Facing Application	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1203	Exploitation for Client Execution	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1068	Exploitation for Privilege Escalation	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1211	Exploitation for Defense Evasion	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1212	Exploitation for Credential Access	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm
integrated_vulnerability_scanner_powered_by_qualys	Integrated Vulnerability Scanner Powered by Qualys	protect	partial	T1210	Exploitation of Remote Services	Comments Once this control is deployed, it can detect known vulnerabilities in Windows and various Linux endpoints. This information can be used to patch, isolate, or remove vulnerable software and machines. This control does not directly protect against exploitation and it is not effective against zero day attacks, vulnerabilities with no available patch, and software that may not be analyzed by the scanner. As a result, the score is capped at Partial. References https://docs.microsoft.com/en-us/azure/security-center/deploy-vulnerability-assessment-vm https://docs.microsoft.com/en-us/azure/security-center/remediate-vulnerability-findings-vm