This report consists of the following sections:
-
Introduction and Objectives: General information about the scan, including the project name, purpose of the scan,
and so on.
-
Executive Summary: A high-level view of the information gathered during the scan, usually using graphs or
comparative numbers. This section is meant to provide a general understanding of the security status of the
application.
-
Detailed Summary: A detailed listing of the scan results, including all issue types found, all remediation tasks
recommended, all vulnerable URLs, and so on. This section is meant to provide a more detailed understanding of the
security status of the application, as well as assist in scoping and prioritizing the work required to remedy the
issues found.
See the attached file for more details: Executive Summary - Sample.doc.
|