Menu option: InfoSec > Internal PenTesting

To analyze vulnerabilities:

1. Select the Insights tab.

   

2. At Scan Type, enter the type of scan you want to review, from Network, Web and API.
3. At Select Scan, select the scan type from those you have scheduled.
4. At Date Range, select the time period over which you want to report. Options are Last 7 Days, Last 30 Days and Last 90 Days.

Once you've selected the report to run, there are several areas of the screen you can review:

• The tiles below show the vulnerabilities broken down by severity: Critical, High, Medium, Low.
• The Detected Vulnerabilities section gives a more detailed breakdown of the detected vulnerabilities.
• The Scan Information section shows the details of the displayed scan, including the numbers of URLs Scanned, Endpoints Tested, and Parameters Tested.
• The Detailed Tool Results section give a more detailed breakdown of which tools were most successful in finding vulnerabilities.
• At the end of the Scan Information section, you can download the report as a PDF Report, JSON File, or as Raw Data.

Review details of detected vulnerabilities

The Detected Vulnerabilities table gives a breakdown of the discovered vulnerabilities.

This screen gives you an at-a-glance summary of the types of vulnerability discovered, their CVSS reference, and their severity. You can filter the displayed records using the severity selection buttons at the top right of the table.

Review details by tool

The Detailed Tool Results table gives a breakdown of the discovered vulnerabilities by discovering tool.

This screen gives you an at-a-glance summary of the tools used, the number of vulnerabilities discovered and the the severity of the discovered vulnerabilities.

Related Articles

• Create a PenTest Agent
• Set up a scheduled PenTest
• Run an on-demand PenTest