Versions Compared

Old Version 7

changes.mady.by.user Jonathan Bellard

Saved on

compared with

New Version 8

changes.mady.by.user Nathan O'Hare

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The Platform supports various formats including see for more details Prism Connected Accounts

Steps for Manual Import:

...

Info

Note: Capitalization and underscores are flexible (e.g., ‘risk_rating’ or ‘risk rating’), and the order of headings is not critical. Additional headings are ignored.

How to Prepare Your Qualys Technical Report (XML) for Import

Prism supports the import of XML-formatted scan results from Qualys.

Specifically, within Qualys there is a standard report template called “Technical Report” that should be used as the basis for generating the scan results in XML-format, ready for Prism

Step 1. Within the Qualys Vulnerability Management interface, move into the “Reports” section and then “Templates” to check you have the default “Technical Report” template available.

...

Step 2. Under “Reports”, click “New” and select “Template Based….Scan Report”:

...

Step 3. A “New Scan Report” window appears - fill out the report details as prompted:

  • Provide a “Title” for the report

  • Select “Technical Report” as the “Report Template”

  • Select “Extensible Markup Language (XML)” as the “Report Format”

  • Ensure the “Report Source” includes all assets/IPs that are to be included in this report.

...

Step 4. Select “Run” at the bottom of this “New Scan Report” windows.

Step 5. When the report is available, it will appear in Qualys under “Reports” - next to the report in question, select the drop down arrow and choose “Download”:

...

The downloaded XML file will now be ready for manually importing into Prism.

How to Prepare Your BurpSuite Professional (XML) for Import

Prism supports the import of XML-formatted scan results from BurpSuite Professional.

Step 1. Within the BurpSuite Professional interface, under “Target”, select all the targets you wish to report issues on. Right-click on the and under the “Issues” menu, select “Report issues for this host” / “Report issues for selected branches”:

...

Step 2. In the Burp Scanner reporting wizard, select “Export issue data (XML)” and enable “Base-64 encode requests and responses”, click Next:

...

Step 3. Select the relevant types of details you wish to import, click Next:

...

Step 4. Select the relevant options if you wish to import requests / responses within the report, click Next:

...

Step 5. Select the issues you wish to include in your report, additionally, be sure to select “Include false positives” where relevant, click Next:

...

Step 6. Give your export file a name and click Next:

...

.