All Practice Exams
100+ Free Qualys WAS Practice Questions
Qualys Certified Specialist — Web Application Scanning (WAS) practice questions are available now; exam metadata is being verified.
✓ No registration✓ No credit card✓ No hidden fees✓ Start practicing immediately
Not published Pass Rate
100+ Questions
100% Free
1 / 100
Question 1
Score: 0/0
What does the 'Fixed' status on a Qualys WAS vulnerability instance indicate?
A
B
C
D
to track
Same family resources
Explore More Qualys Certifications
Continue into nearby exams from the same family. Each card keeps practice questions, study guides, flashcards, videos, and articles in one place.
2026 Statistics
Key Facts: Qualys WAS Exam
Free
Exam Fee
Qualys (for customers)
Qualys LMS
Delivery Platform
Qualys
200+
API Security Signatures
Qualys WAS API Security
96%
AI Detection Rate
Qualys (with 80% scan time reduction)
150094
Auth Success QID
Qualys WAS
3 types
WAS Scan Types
Discovery, Vulnerability, Auth Test
The Qualys WAS Specialist certification validates expertise in web application DAST scanning using the Qualys platform. Key domains: DAST fundamentals, option profiles and crawl configuration, Selenium-based authentication, OWASP Top 10 detection, REST API scanning (Swagger/OpenAPI/Postman), Burp Suite integration, malware detection, and tag-based reporting. Exam is delivered via Qualys LMS and is free for Qualys customers.
Sample Qualys WAS Practice Questions
Try these sample questions to test your Qualys WAS exam readiness. Each question includes a detailed explanation. Start the interactive quiz above for the full 100+ question experience with AI tutoring.
1What are the three scan types available in Qualys Web Application Scanning (WAS)?
A.Discovery, Vulnerability, and Authentication Test
B.Passive, Active, and Hybrid
C.Quick, Full, and Scheduled
D.Internal, External, and Cloud
Explanation: Qualys WAS offers three scan types: Discovery scan (information gathering only, no active attack checks), Vulnerability scan (full active testing for security weaknesses), and Authentication Test (verifies that authentication credentials and scripted logins work correctly before running a full scan).
2Which QID confirms that authentication was successful during a Qualys WAS scan?
A.QID 150095
B.QID 150094
C.QID 150009
D.QID 150001
Explanation: QID 150094 appears in the scan results when authentication was successful in a Qualys WAS scan. This QID is used as a diagnostic confirmation step. QID 150095 is the companion that appears when authentication failed, allowing administrators to verify their credential configuration before launching a full vulnerability scan.
3In a Qualys WAS Selenium authentication script, which placeholder variables are used to parameterize username and password credentials?
A.<<USERNAME>> and <<PASSWORD>>
B.${username} and ${password}
C.@@authusername@@ and @@authpassword@@
D.%user% and %pass%
Explanation: Qualys WAS uses @@authusername@@ and @@authpassword@@ as placeholder tokens inside Selenium HTML scripts. After uploading the script to a WAS Authentication Record and enabling 'Add credentials to Selenium Script,' you supply the actual username and password which WAS substitutes at scan time.
4What tool does Qualys WAS provide to help users create Selenium authentication scripts without writing them from scratch?
A.Qualys IDE Extension
B.Qualys Script Wizard
C.Qualys Proxy Capture
D.Qualys Browser Recorder
Explanation: Qualys provides the Qualys Browser Recorder, a browser extension that records user interactions (clicking, typing, form submission) and exports them as Selenium HTML scripts. These scripts can then be uploaded to WAS Authentication Records to enable scripted login during web application scans.
5Which Qualys WAS feature provides the configuration settings for crawling, sensitive content detection, vulnerability detection, and password brute forcing?
A.Option Profile
B.Authentication Record
C.Web Application Definition
D.Scan Schedule
Explanation: An Option Profile in Qualys WAS bundles all scan behavior settings including crawler configuration (POST/GET behavior, link limits), sensitive content detection, vulnerability detection checks to run, and password brute force settings. Option Profiles are reusable and assigned when launching or scheduling a scan.
6When a Qualys WAS web application has an exclude list only (no allow list), what is the scanner's behavior?
A.Crawl only links that match the exclude list entries
B.Skip all links matching exclude list entries and crawl everything else
C.Stop scanning as soon as any excluded link is encountered
D.Treat all links as excluded and run only vulnerability checks
Explanation: When only an exclude list is configured (no allow list), Qualys WAS skips all links that match the exclude list patterns and crawls everything else. Conversely, if only an allow list is configured, the scanner crawls only those links that match allow list entries. Both lists can be combined for fine-grained scope control.
7Which crawl scope option in Qualys WAS restricts scanning to a specific subdirectory path and all content below it?
A.URL hostname and specified sub-domain
B.URL hostname only
C.Content at or below a URL subdirectory
D.URL hostname and specified domains
Explanation: Qualys WAS provides four crawl scope options. 'Content at or below a URL subdirectory' limits the scan to a specified path prefix, which is useful when you want to scan only a specific application section (e.g., /app/) rather than the entire host. This prevents the scanner from crawling unrelated parts of the web server.
8Which Qualys WAS form submission method is the recommended best practice setting in option profiles to maximize vulnerability detection coverage?
A.HEAD only
B.GET only
C.POST only
D.Post & Get
Explanation: The 'Post & Get' setting is the Qualys WAS recommended best practice for form submission in option profiles. This setting causes the scanner to submit requests to all forms using both POST and GET methods, ensuring maximum reach during vulnerability analysis including SQL injection and XSS testing across all form types.
9What does QID 150009 record in a Qualys WAS scan?
A.The list of links crawled during the scan
B.Authentication success status
C.Detected SQL injection vulnerabilities
D.The list of excluded URLs
Explanation: QID 150009 (Links Crawled) is an informational finding that records all the URLs the Qualys WAS scanner visited during a scan. This is useful for verifying scan coverage, understanding the crawl depth, and identifying whether important application sections were reached during the scan.
10In Qualys WAS, what file format must a valid Selenium script be saved as for it to be accepted as an authentication script?
A.Python .py file
B.HTML file saved from Qualys Browser Recorder
C.JSON file with action commands
D.XML file with driver instructions
Explanation: Qualys WAS requires Selenium scripts to be HTML files saved from the Qualys Browser Recorder. The service validates the script by checking: (a) it is an HTML file from the Browser Recorder, (b) it contains at least one command, and (c) it contains an absolute path to each form requiring authentication. Python, JSON, and XML formats are not accepted.
About the Qualys WAS Practice Questions
Verified exam format metadata for Qualys Certified Specialist — Web Application Scanning (WAS) is pending. The practice questions above remain available while official exam length, timing, passing score, fee, and administrator details are reviewed.