This section contains quick summary of scan performed on {{ scan_object.domain.name }}
Scan started on: {{ scan_object.start_scan_date|date:"F j, Y h:i" }}
Total time taken:
{% if scan_object.scan_status == 0 %}
{{ scan_object.start_scan_date|timesince:scan_object.stop_scan_date }}
{% elif scan_object.scan_status == 1 %}
{{ scan_object.get_elapsed_time }}
{% elif scan_object.scan_status == 2 %}
{% if scan_object.get_completed_time_in_sec < 60 %}
Completed in < 1 minutes
{% else %}
Completed in {{ scan_object.start_scan_date|timesince:scan_object.stop_scan_date }}
{% endif %}
{% elif scan_object.scan_status == 3 %}
Aborted in
{{ scan_object.start_scan_date|timesince:scan_object.stop_scan_date }}
{% endif %}
Report Generated on: {% now "F j, Y" %}
This section provides a summary of the findings.
{% if show_vuln and unique_vulnerabilities %}
{% endif %}
Listed below are the interesting subdomains identified on {{ scan_object.domain.name }}
| # | Subdomain | Page Title | HTTP Status |
|---|---|---|---|
| {{ forloop.counter }} | {{ subdomain.name }} | {% if subdomain.page_title %}{{ subdomain.page_title }}{% endif %} | {% if subdomain.http_status %}{{ subdomain.http_status }}{% endif %} |
No interesting subdomains were identified on {{ scan_object.domain.name }}
{% endif %}No vulnerabilities were identified on {{ scan_object.domain.name }}
{% else %}Listed below are the vulnerabilities identified on {{ scan_object.domain.name }}
| # | Vulnerability Name | Instances | Severity |
|---|---|---|---|
| {{ forloop.counter }} | {{ vulnerability.name }} | {{ vulnerability.count }} | {% if vulnerability.severity == -1 %} Unknown {% elif vulnerability.severity == 0 %} Informational {% elif vulnerability.severity == 1 %} Low {% elif vulnerability.severity == 2 %} Medium {% elif vulnerability.severity == 3 %} High {% elif vulnerability.severity == 4 %} Critical {% endif %} |
This section provides a list of assets discovered during the reconnaissance phase.
During the reconnaissance phase, our subdomain enumeration process revealed:
| # | Subdomain | Page Title | HTTP Status | {% comment %} if show vuln is there we may also show total vulnerbaility count {% endcomment %} {% if show_vuln %}Vulnerabilities Count | {% endif %}
|---|---|---|---|---|
| {{ forloop.counter }} | {{ subdomain.name }} | {% if subdomain.page_title %}{{ subdomain.page_title }}{% endif %} | {% if subdomain.http_status %}{{ subdomain.http_status }}{% endif %} | {% if show_vuln %}{% if subdomain.get_total_vulnerability_count %} {{ subdomain.get_total_vulnerability_count }} {% else %} 0 {% endif %} | {% endif %}
In addition to subdomains, various IP assets associated with the target infrastructure were also identified:
| # | IP | Open Ports | Geo Location | Remarks |
|---|---|---|---|---|
| {{ forloop.counter }} | {{ ip.address }} | {% for port in ip.ports.all %} {{ port.number }}/{{ port.service_name }} {% if not forloop.last %},{% endif %} {% endfor %} | {% if ip.geo_iso %}{{ ip.geo_iso }}{% endif %} | {% if ip.is_cdn %}CDN{% endif %} |
This section contains list of all the subdomains identified during the reconnaissance phase.
{% for subdomain in subdomains %}
This section details the security vulnerabilities identified during our penetration testing engagement. Each finding is documented with its description, potential impact, and recommended remediation steps.
Vulnerabilities are categorized by severity (Critical, High, Medium, Low, Info) to prioritize remediation efforts. This assessment is based on the potential impact to confidentiality, integrity, and availability of the systems and data.
The information presented here is crucial for understanding your current security posture and should guide your remediation strategy to enhance overall security.
CVSS
Description
{{vulnerability.description|linebreaks}}
Impact
{{vulnerability.impact|linebreaks}}
Remediation
{{vulnerability.remediation|linebreaks}}
Vulnerable URLs
References