Writing Pentest reporting can be a time consuming task. Our platform optimizes that process and removes most of the manual work. We share here some resources that are useful to pentesters to deliver quality reporting to their clients.
The report templates are in Markdown (.md and .css) to be used in the platform.
-
Sample Pentest Report Template
-
Sections:
- Cover, Management Summary, Scope, Methodology, Summary of Findings
-
The compliance norms are in Excel and can be uploaded in the platform.
- OWASP ASVS 4.0 L1, L2, L3
- OWASP ASVS 5.0 L1, L2, L3
- OWASP ASVS IoT L3
- OWASP MASVS 1.2 L1, L2, L3 (Android + iOS)
- OWASP MASVS 2.1
- OWASP OTG 4
- OWASP API Security TOP 10 2019, 2023
- OWASP Mobile TOP 10 2023
- OWASP IoT TOP10
- OWASP TOP10 2017, 2021
- OWASP TOP10 for LLMs v1
- PCI DSS 3.2, 4.0.1
- SANS TOP 20
- Cyber Essentials Plus
- DigiD 2.0
- ISO27001
- PTES
- MITRE ATT&CK®
- NIST Privacy Framework 1.0 Core
The checklists are in Excel and can be uploaded in the platform.
- OWASP ASVS 4.0 L1, L2, L3
- OWASP ASVS 5.0 L1, L2, L3
- OWASP ASVS IoT L3
- OWASP MASVS 1.2 L1, L2, L3 (Android + iOS)
- OWASP MASVS 2.1
- OWASP MASTG 1.7.0 L1, L2, L3 (Android + iOS)
- OWASP WSTG 4.2
- OWASP OTG 4
- OWASP API Security TOP 10 2019, 2023
- OWASP IoT TOP10
- OWASP Mobile TOP10 2023
- OWASP TOP 10 2017, 2021
- OWASP TOP 10 for LLMs v1
- OWASP TOP 25 CWE 2024
- PCI DSS 3.2, 4.0.1
- SANS TOP 20
- Cyber Essentials Plus
- DigiD 2.0
- ISO27001 2013, 2022
- VAPT
- Cyber Kill Chain
- CIS Critical Security Controls 8.1
The checklists are in CSV and can be uploaded in the platform.
- MITRE ATT&CK® Tactics
- MITRE ATT&CK® Techniques
- MITRE ATT&CK® Mitigations
- Common Weakness Enumeration (CWEs)