We often get asked what our penetration reports look like, and what are the various sections. We thought we would add a quick video going over a sample report to help address these questions. In the video below we go over our standard deliverable set, which includes our executive summary and technical findings report.
The intended audience for our executive summary is upper management. These report provides a high level over view of the assessments that were performed, demonstrates the impact of the various findings, and provides a quick run down of the thematic remediation steps that we recommend.
In contrast, the technical finding report was written for the IT and Security teams. This report includes a line-by-line listing of every vulnerability discovered, what system it was discovered on, a brief description of the finding and why it is important, step by step remediation actions, and reference links to aid in remediation.
Take a look as we go over these two reports:
Please let us know what you think. Any feedback or questions? please comment below.