Qualys makes its WAS solution free for 30 days

Qualys, a provider of disruptive cloud-based IT, security and compliance solutions, has announced it is making its Web Application Scanning (WAS) solution available free for 30 days, to help companies protect against Log4Shell.

The Apache Log4Shell zero-day RCE vulnerability has raised alarms at companies around the globe, with US government officials calling it “one of the most serious flaws they’ve seen.” The vulnerability poses potential threats for almost every single web application, with the list of known exploits growing daily.

Web Application Scanning capabilities are essential to detect these vulnerabilities as they simulate the attack of Log4Shell exploits. To help customers protect themselves from this threat, Qualys is making its WAS app, which scans web applications and APIs for the Log4Shell (CVE-2021-44228) vulnerability, available free for 30 days.

Qualys WAS makes accurate detections of applications vulnerable to Log4Shell through its advanced out-of-band detection mechanisms. To identify vulnerable sites, WAS uses specially crafted payloads to simulate the same attack pattern malicious actors use. Vulnerable sites are quickly and easily identified for remediation, shutting the door on attackers before they ever know you are exposed.

“Log4Shell is the most alarming vulnerability we’ve seen in the last decade and helping the community battle this unprecedented threat is at the forefront of our focus,” said Sumedh Thakar President and CEO of Qualys. “Many organisations are scrambling to find ways to detect their exposure to Log4Shell. We hope the free access to our app along with the open-source scripts we released will help security teams rapidly assess and secure their external web attack surface.”

The Qualys Cloud Platform and its integrated Cloud Apps deliver businesses critical security intelligence, enabling them to automate the full spectrum of auditing, compliance, and protection for IT systems and web applications across on premises, endpoints, cloud, containers, and mobile environments. Founded in 1999 as one of the first SaaS security companies, Qualys has established strategic partnerships with leading cloud providers like Amazon Web Services, Microsoft Azure and the Google Cloud Platform, and managed service providers and consulting organizations including Accenture, BT, Cognizant Technology Solutions, Deutsche Telekom, DXC Technology, Fujitsu, HCL Technologies, IBM, Infosys, NTT, Optiv, SecureWorks, Tata Communications, Verizon and Wipro. The company is also a founding member of the Cloud Security Alliance.

To sign up for the free, 30-day WAS service, visit the Qualys website.

 

Media contact

Rebecca Morpeth Spayne,
Editor, Security Portfolio
Tel: +44 (0) 1622 823 922
Email: [email protected]

About Security Buyer

Security Buyer is the leading authority in global security content, delivering expert news, in-depth articles, exclusive interviews, and industry insights across print, digital, and event platforms. Published 10 times a year, the magazine is a trusted resource for professionals seeking updates and analysis on the latest developments in the security sector.

To submit an article, or for sponsorship opportunities, please contact our team below.

Rebecca Spayne picture 2025

Rebecca Spayne

Managing
EDITOR

Georgina Turner image

Georgina Turner

Sales
Manager

Afua Akoto image - Security Buyer

Afua Akoto

Marketing Manager

Read the Latest Issue

Follow us on X

Follow us on X

Click Here

Follow us on LinkedIn

Follow us on LinkedIn

Click Here

Advertise here

Reach decision makers and amplify your marketing

Advertise here

Click Here

Related News

Qualys

Qualys discovers critical vulnerability, regreSSHion, in OpenSSH server

The Qualys Threat Research Unit (TRU) has discovered a Remote Unauthenticated Code Execution (RCE) vulnerability in OpenSSH’s server (sshd)..
Qualys

Qualys Unveils TotalCloud 2.0

Qualys, provider of disruptive cloud-based IT, security and compliance solutions, has unveiled TotalCloud 2.0. This significant upgrade…
Netskope

Netskope expands in Middle East

While the Middle East moves towards digitilisation, Netskope, the Secure Access Service Edge, has announced…
Cobalt

Cobalt Iron’s cyber inspection technology

Cobalt Iron Inc., a leading provider of SaaS-based enterprise data protection, today announced it has received a patent on its adaptive
Qualys

Qualys Expands Cloud Platform

Qualys announced the expansion of its TruRisk platform to serve the needs of both large enterprises and small and medium-sized businesses.
Qualys

Qualys Introduces TotalCloud

 Qualys, provider of disruptive cloud-based IT, security and compliance solutions, is announcing  TotalCloud with FlexScan delivering cloud-native VMDR
Qualys

Qualys Acquires Blue Hexagon’s AI/Machine Learning Platform

AI/ML technology to transform Qualys’ massive data lake into a powerful predictive analytics platform that performs real-time zero-day threat detection

Qualys Brings EASM to Cloud Platform

Qualys, Inc has announced it is adding External Attack Surface Management (EASM) capabilities to the Qualys Cloud Platform.

Qualys Brings EASM to Cloud Platform

Qualys, Inc has announced it is adding External Attack Surface Management (EASM) capabilities to the Qualys Cloud Platform.

ManageEngine releases SaaS version of Analytics Plus

ManageEngine today announced that its renowned IT analytics product, Analytics Plus, is now available as a SaaS offering.
Scroll to Top