adminmpmcz/patchcenter
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 2 Wiki Activity

feat(qualys/duplicates): scan filtre Linux+Windows Server uniquement (~1200 vs 6244)

Browse Source
This commit is contained in:
Pierre & Lumière 2026-04-25 19:56:23 +00:00
parent 2c5c0df355
commit 0d4ce6dfc2
1 changed files with 60 additions and 44 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

34
app/services/qualys_service.py
View File

@ -1111,20 +1111,24 @@ def load_vuln_history(db, period="day", days=30, dimension="global", dimension_v
# =========================================================================== # ===========================================================================
def fetch_all_qualys_assets(db, with_progress=False): def fetch_all_qualys_assets(db, with_progress=False):
"""Recupere TOUS les assets Qualys via API avec pagination (lastId). """Recupere les assets Qualys SERVEURS via API (tags built-in Linux Server + Windows Server).
Retourne liste de dicts {id, name, ip, last_check, agent_status}.""" Pagination via id GREATER, batch 1000. Filtre directement cote API pour eviter de scanner
les ~5000 postes de travail (gain de temps x4).
Retourne liste de dicts {id, name, ip, os, last_check, agent_status}."""
qualys_url, qualys_user, qualys_pass, qualys_proxy = _get_qualys_creds(db) qualys_url, qualys_user, qualys_pass, qualys_proxy = _get_qualys_creds(db)
if not qualys_user: if not qualys_user:
return [] return []
proxies = {"https": qualys_proxy, "http": qualys_proxy} if qualys_proxy else None proxies = {"https": qualys_proxy, "http": qualys_proxy} if qualys_proxy else None
all_assets = []
def fetch_by_tag(tag_name):
results = []
last_id = 0 last_id = 0
while True: while True:
body = {"ServiceRequest": {"preferences": {"limitResults": 1000}}} criteria = [{"field": "tagName", "operator": "EQUALS", "value": tag_name}]
if last_id: if last_id:
body["ServiceRequest"]["filters"] = {"Criteria": [ criteria.append({"field": "id", "operator": "GREATER", "value": str(last_id)})
{"field": "id", "operator": "GREATER", "value": str(last_id)} body = {"ServiceRequest": {"preferences": {"limitResults": 1000},
]} "filters": {"Criteria": criteria}}}
try: try:
r = requests.post( r = requests.post(
f"{qualys_url}/qps/rest/2.0/search/am/hostasset", f"{qualys_url}/qps/rest/2.0/search/am/hostasset",
@ -1154,11 +1158,23 @@ def fetch_all_qualys_assets(db, with_progress=False):
"last_check": last_check, "agent_status": agent_status}) "last_check": last_check, "agent_status": agent_status})
if not batch: if not batch:
break break
all_assets.extend(batch) results.extend(batch)
last_id = max(b["id"] for b in batch) last_id = max(b["id"] for b in batch)
if len(batch) < 1000: if len(batch) < 1000:
break break
return all_assets return results
# Linux Server + Windows Server (tags built-in Qualys, couvre tous les serveurs)
linux = fetch_by_tag("Linux Server")
windows = fetch_by_tag("Windows Server")
# Dedupe par id (un asset pourrait theoriquement avoir les 2 tags)
seen = set()
out = []
for a in linux + windows:
if a["id"] not in seen:
seen.add(a["id"])
out.append(a)
return out
def find_duplicate_hostnames(db, force_refresh=False): def find_duplicate_hostnames(db, force_refresh=False):