Writing and Communicating the Pentest Report

In this chapter, you will learn how to

•  Describe a process-oriented approach to writing a pentest report

•  Find open source guidance regarding pentest report criteria

•  Identify methods for communicating the pentest report to your customer



In the previous chapters, you have learned about various attack techniques and methodologies that you can use during a pentest. However, the technical assessment is only a portion of the overall pentesting process. Client communication is an important factor of pentesting, and even more so when the pentest is conducted with limited or no face-to-face interaction with the customer. The pentest report documents the results of the pentest and is ...

Get GPEN GIAC Certified Penetration Tester All-in-One Exam Guide now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.