Jump to content


Recommended Posts

Hey all,

So, I am new to all of this and was wondering if anybody could help me find sort of reference guide to writing a vulnerability report, I am focusing specifically on testing web apps and websites. If there are templates, could you please direct me to the right place??

Link to comment
Share on other sites

Offsec has a sample pentest report on their site - https://www.offensive-security.com/reports/sample-penetration-testing-report.pdf

It's not however a template, but something to at least see how one company has theirs formatted. I think SANS may also have something on their site, but you'd have to google for it.

Link to comment
Share on other sites

ive always found it easy to do a scan with something like nessus and save the list of found vulns etc with a screen shot then go through each of the vulns creating screenshots for each saying what the vuln is, and any tests youve done against it again showing screenshots then put it all into a printed out booklet

another system you could try is dradis which is a framework for reporting

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Create New...