Big THANK YOU to our sponsor PlexTrac for making this video happen! 👉🏼 plextrac.com Here's a copy of my Pentest Report template for free! 🆓 hhub.io/5xALMdSPve 📚 If you want to learn bug bounty hunting from me: bugbounty.nahamsec.training
This is great advice. I work at a Fortune 100 company on an in-house pentesting team, and we use a standardized template for these, with automation to help us fill them out. The template is very similar to what you showed here, but you actually provide a bit more in certain areas, such as the overall Recommendations section in the Executive Summary rather than just on each finding. Unfortunately, many bug bounty reports are lacking in impact information which is a reason organizations often prefer pentesting. In addition, I recommend providing a CVSS score and links to relevant CWEs for each finding.
Neat one there man. I believe the key is to explain in the report like you are teaching it to a kid or someone who know nothing about computers.and importantly , show the impact . Very good video man 🙏
Big THANK YOU to our sponsor PlexTrac for making this video happen! 👉🏼 plextrac.com
Here's a copy of my Pentest Report template for free! 🆓 hhub.io/5xALMdSPve
📚 If you want to learn bug bounty hunting from me: bugbounty.nahamsec.training
This is great advice. I work at a Fortune 100 company on an in-house pentesting team, and we use a standardized template for these, with automation to help us fill them out. The template is very similar to what you showed here, but you actually provide a bit more in certain areas, such as the overall Recommendations section in the Executive Summary rather than just on each finding. Unfortunately, many bug bounty reports are lacking in impact information which is a reason organizations often prefer pentesting. In addition, I recommend providing a CVSS score and links to relevant CWEs for each finding.
Very helpful great video, thank you for sharing. Love your content
Where to buy that shirt, you're wore ? Really cool t-shirt😅
Thank you very much Sir, you're saving my life!!!!
Happy to help
finally bro i needed this ...😅
🫡
What if you don’t have a company?
You may use for freelance projects. If not a freelancer as well then you don’t need to make the report.
You can easily create a basic company name and register a Sole Proprietorship.
thanks bro
Hey copilot please read a bug/pentest report for
Neat one there man. I believe the key is to explain in the report like you are teaching it to a kid or someone who know nothing about computers.and importantly , show the impact . Very good video man 🙏
Thanks for watching!!
1