Analyst User Guide: Reports
This guide is to help analyst users navigate and utilize the functions they have access to within the Report Module in PlexTrac. To learn the basics of PlexTrac, please check out the Getting Started Guide.
From the main dashboard you will be able to access reports in a few ways. From the left-hand navigation menu and from the recently viewed reports listed across the top of the dashboard. If you choose the report from the recently viewed reports section, you will be taken directly to that specific report. If you choose to navigate using the reports menu item on the list, you will be taken to a list of all reports you have access to.
Once you have made your way to the reports module you are able to see your list of reports. Keep in mind, this list is only the reports you have access to. There may be other reports in the system that are not visible to you as a user.
From this page you can either click on the report itself or the readout link to the right of the report to be taken to the main readout page of the report. Or, if you click on the findings link to the right of the report you will be taken to the findings you have access to within the report.
Once you are in the report itself you can navigate through the different sections of the report using the tabs across the top.
The readout tab includes all the narratives and findings for the report, a findings overview and findings status chart. On the right side of the page is a list of all the parts of the report. You can click on each one to navigate to a preview of each of those sections.
The findings tab lists all the findings you have access to. There may be additional findings in this report in draft status that you do not have current access to. As those findings are published, you will see them added to this list within the report.
When you click on a finding, you will see a preview of the information about the finding, including the description, any assets affected by the finding, attachments associated with the finding and what actions you may need to take to remediate the finding.
The main action you can take within the findings tab is changing their status. You can do this by clicking on the status link on the far right of the row for the finding you need to update.
You will then click on the add update button and update the status to the correct information. On this finding I have updated the status to closed, done and then added a description and some notes on what I did to complete the work associated with the finding. Then you will click save.
Now you can see the status updated listed on the status of the finding, like below. The newest update will be at the top of the list of status updates.
And, when you view the list of findings, you will see this finding has an updated status of closed.
The assets tab shows you all assets associated with the report and findings that you have access to.
If you click on the + sign next to the asset name you can view all of the findings associated with this asset within the report that you have access to.
You can also view the asset detail or go to the asset within the client space, which will show you all the known information about the asset and which findings you have access to within this client space that this specific asset is associated with.
The artifacts tab shows you all the uploaded artifacts related to the findings within the report that you have access to. This can include screenshots, PDF’s, images, and other documents.
You can add additional artifacts through the drag and drop download box. Just drag and drop into the download box or click the browse link. Choose the files to upload and then click the upload button.
You will see the new artifacts added to the list of artifacts in the report. You can also download any artifacts by clicking the download button for the artifact you wish to view. This is helpful for non-image artifacts included in a finding as those do not preview in the finding preview, the preview just lists the file name.
The attack path tab is an in platform use only tab where you may be able to see the steps taken by the security team when completing their pentest. This information does not export out with the report.
You can also export a report using the export button on the upper right hand of the reports module. This button is visible in all tabs of the report.
When you click on the button you have the choice to export the report in many different ways, including Word.
If you need this report in a PDF you can download the Word version and then use the print to PDF option within Word to make the PDF file.