Report Export Templates
API Documentation
PlexTrac.com

Getting Started

The following guide outlines the steps to quickly onboard new users to production.

Before downloading and using a template, reading the Using Templates Overview page for orientation is highly recommended.

Step 1: Download the multi-scope template below:

Step 2: Upload the downloaded multi-scope Template into PlexTrac.

Reference the Using Templates Overview page for instructions on associating the export template correctly.

Step 3: Attach the multi-scope template to a report.

Within the report, navigate to the Details tab. In the "Report Template" field, select the template created in Step 2 and Click Save.

Step 4: Add the custom fields leveraged by the export template. Predefined custom fields are included in single-scope templates.

On the Details tab of the report, click Add Custom Field at the bottom of the page and create the following 'Report Custom Field' labels:

  • Author

  • Author Title

  • Author Email

  • Company Name

  • Company Address

Once completed, Click Save.

Step 4 can also be completed when creating the Report Template.

Reference the 'Using Templates Overview' page for more information.

Step 5: Add and tag findings with their associated scope.

Step 6: When exporting the report, select the desired scope(s) to be included. These scope tags are available for use:

tagdescription

internal

Internal Penetration Report

external

External Penetration Report

wireless

Wireless Penetration Report

mobile

Mobile Application Report (OWASP Top 10)

webapp

Web Application Report (OWASP Top 10)

social

Social Engineering Report

physical

Physical Penetration Test Report

If tagging the report with mobile or webapp, see Step 7. Otherwise, skip to Step 8.

Step 7: If the Report is tagged with mobile or webapp, add mobile or webapp tags for findings, AND add the appropriate related tags below.

Mobile OWASP Top 10 Tags

The exported report can display the OWASP risks using these tags:

tagdescription and link to more information

m01

M1:2023 - Improper Credential Usage

m02

M2:2023 - Inadequate Supply Chain Security

m03

M3:2023 - Insecure Authentication/Authorization

m04

M4:2023 - Insufficient Input/Output Validation

m05

M5:2023 - Insecure Communication

m06

M6:2023 - Inadequate Privacy Controls

m07

M7:2023 - Insufficient Binary Protections

m08

M8:2023 - Security Misconfiguration

m09

M9:2023 - Insecure Data Storage

m10

M10:2023 - Insufficient Cryptography

Web App OWASP Top 10 Tags

The exported report can display the OWASP risks using these tags:

tagdescription and link to more information

a01

A01:2021 - Broken Access Control

a02

A02:2021 - Cryptographic Failures

a03

A03:2021 - Injection

a04

A04:2021 - Insecure Design

a05

A05:2021 - Security Misconfiguration

a06

A06:2021 - Vulnerable and Outdated Components

a07

A07:2021 - Identification and Authentication Failures

a08

A08:2021 - Software and Data Integrity Failures

a09

A09:2021 - Security Logging and Monitoring Failures

a10

A10:2021 - Server-Side Request Forgery

Please note these findings tags are specific to mobile and web apps. Mobile OWASP tags will only function with mobile findings, and web app OWASP tags will only work with Web App Findings.

Step 8: Export the report.

Any narratives, findings, and affected assets expected in the report must be added before export.

To access additional pre-built customization options, please proceed to the following pages.

PreviousMulti-Scope TemplateNextColor Codes

Last updated

Resources

Privacy PolicyTerms of UseVulnerability Policy

© 2024 PlexTrac, Inc. All rights reserved.