Findings

Review and remediate findings that our pentesters discover.

A finding is a vulnerability that a pentester reports during a pentest. Pentesters describe the vulnerabilities that they found during the pentest and provide recommendations on how to fix them.

Once your pentest goes Live, pentesters start testing your asset. You get updates from pentesters in a dedicated Slack channel and in the Pentester Updates sidebar.

Organization View

To view all findings reported on all pentests within your organization, navigate to the Findings page. You need an Organization Owner or Member role to view this page.

View all findings reported within an organization

Here, you can filter findings by:

You can download findings in a CSV file based on applied filters.

Pentest View

To view findings reported on a specific pentest, on the pentest page, navigate to the Findings tab.

View findings reported on a specific pentest

Here, you can filter findings by:

  • Finding state
  • Finding severity level
  • Vulnerability type, from criteria such as the OWASP Top 10 list
  • Assignee, if pentesters or someone from your organization assigned the finding
  • Label, if pentesters or someone from your organization applied a label

You can download findings in a CSV file based on applied filters.


Remediate Findings

Learn how to submit a finding for retest or accept it.

Finding States

Learn what finding states mean.

Severity Levels

Finding severity levels.




Was this page helpful?

Create an Issue
Last modified November.04.2024