Help choosing Vulnerability scanner - Microsoft TVM Vs Qualys

Occasional Contributor

A client of mine has asked to provide a comparison between Microsoft TVM and Qualys so that vulnerability extension can be configured on the MDC.

Only MDE TVM is supported on Virtual Machine scale Set. Qualys doesn’t support VMSS.

 

With Qualys , the vulnerability findings only show in Defender for Cloud and  not in security.microsoft.com.

Are there any recommendation on choosing one of these scanners?

2 Replies
in MS TVM you cannot exclude/filter vulnerabilities related to non-running kernels (Linux). It will not only display the vulnerabilities of running kernels, but also the ones that you might keep on your server after patching. Causes a lot of confusion
absolutely - this was reported to teams who are looking to resolve - as yes it causes a hell of alot of confusion