What types of vulnerability reports can I expect?
The Continuous pentesting solution of YesWeHack includes reports from:
Scheduled Pentest campaigns
Detected issues — identified through ongoing security testing and confirmed by YesWeHack pentesters.
ℹ️ Click here to learn more about vulnerability reports.
Where do I find my Vulnerability reports ?
Go to the “Vulnerability Center” page
ℹ️ All vulnerability reports displayed in the vulnerability center are assessed by YesWeHack and appear with an “under review” status.
Click on a “Report Title” to open a given report
ℹ️ Learn more about the structure of a report and the detailed information it contains here.
What can I do with a new report?
There are several options once you receive your first vulnerability report. Keep in mind that your Customer Success Manager is here to guide you throughout the process and help you choose the best move forward. Do not hesitate to reach out to them if you have any question.
Accept the report
Several options are available to change the status of the report. You may:
Click on “Actions”
Click on “Change status”
This will bring you to the action panel at the end of the report, where you can change the status together with a comment. You can also directly select a comment template:
Ask for a retest
Use case: Your teams deployed a fix for a vulnerability. Ask the YesWeHack team to confirm the vulnerability is now patched and cannot be bypassed.
ℹ️ The report must have an “Accepted” status to request a fix verification.
Click on “Actions”
Select “Ask for fix verif.” tab
Write your comment
Upload images/videos or a live recording (optional)
Click on “Ask for fix verification”
ℹ️ The YesWeHack team will then confirm the fix, or reject it and indicate that the vulnerability remains.
The report status will be accompanied by an icon to track the progression. For instance, in the Vulnerability Center:
Icons definition:
Pending fix verification
Fix confirmed
Fix rejected
Close the report
Use case: A vulnerability has been fixed and the report has to be closed. Change its status from “Accepted” to “Resolved” to close the report.
⚠️ Once the vulnerability is fixed, you can change the report status from « Accepted » to « Resolved ». It will then appear as « Fixed » in the final report.
Click on “Actions”
Select “Change Status” tab
Select the “Close” status and a reason
Write a comment (optional)
Upload images/videos or a live recording (optional)
Click on “Change status”
ℹ️ To learn more about the report workflow, read this article.
Talk to your team
Click on “Actions”
You will be redirected automatically on the comment section
Assign specific members of your team
Write your comment
“Post comment to team”
ℹ️ Your comment will only be visible to the recipient(s).
Talk to YesWeHack pentesters
Use case: You would like more information about the description or the assessment provided by the YesWeHack team.
Go to “Comment for pentesters” tab in the quick actions
Upload images/videos or a live recording (optional)
Post your comment, you will be replied to shortly!
Export the Audit Report
ℹ️ To know how to export a specific report or an executive report, click here.
Export an audit report anytime during a current, or a previous, pentest campaign.
Go to the “Admin Panel”
Choose a Pentest campaign
Click on “Audit reports” in the left-side menu
Click on “Generate an audit report”
Choose a “start” and an “end” dates
Define an author
The sections “Description and goals” and “Synthesis of findings” will already be written in a draft. Modify the content if needed.
ℹ️ This information will be included in the final report.
Click on “Generate audit report”
The new audit report will appear in the “Audit reporting” section
Retrieve the history of your “previous audit reports”
ℹ️ Click toggle buttons to set the visibility of audit reports to other pentesters.
Key indicators
Find key metrics on your reports directly in the dashboards, to learn more about the distribution of all your reports (e.g., by status and severity)
Go to the “Dashboard” page
Open the “Reports Overview” tab in the left-side menu
ℹ️ Learn more about dashboards by clicking on the following links: