Forum Discussion

askvpb's avatar
askvpb
Brass Contributor
Sep 08, 2022

Help choosing Vulnerability scanner - Microsoft TVM Vs Qualys

A client of mine has asked to provide a comparison between Microsoft TVM and Qualys so that vulnerability extension can be configured on the MDC.

Only MDE TVM is supported on Virtual Machine scale Set. Qualys doesn’t support VMSS.

 

With Qualys , the vulnerability findings only show in Defender for Cloud and  not in security.microsoft.com.

Are there any recommendation on choosing one of these scanners?

  • sebastianheil's avatar
    sebastianheil
    Brass Contributor
    in MS TVM you cannot exclude/filter vulnerabilities related to non-running kernels (Linux). It will not only display the vulnerabilities of running kernels, but also the ones that you might keep on your server after patching. Causes a lot of confusion
    • wootts's avatar
      wootts
      Iron Contributor
      absolutely - this was reported to teams who are looking to resolve - as yes it causes a hell of alot of confusion

Resources