Components of Penetration test report

Components of Penetration test report are as below

Introduction
Global targets
Global target Summary
Attack Flow Diagram
Global target Summary Report

External Network Assessment
Introduction
Detailed targets
Detailed target Results
Known Network Layout

Internal DMZ Network Assessment
Introduction
Detailed targets
Detailed target Results
Known network layout

Internal Management Network Assessment
Introduction
Detailed targets
Detailed target Results
Known network layout
Social Engineering
Domain Controller
Recommendations

Conclusions
Appendix

Scoping is one of the more significant and frequently overlooked elements of a penetration test. If the test implies our Internet connection like almost penetration tests do ), then explicitly define which network addresses are to be examined, which web hosts, which mail systems and so on. As well specify which systems we do not need examined. exclusion could be :

Crucial production systems

Systems belonging to clients

Remote access systems - modems, VPN devices, etc

We may as well need to except some types of examinations, such as Denial of Service ( DoS ) runs, and war-dialing examinations which call in a number of phone lines searching modems. These tests are really likely to be disruptive to convention operation