Sanitized Reports

Penetration Test & Research Reports

This index lists sanitized excerpts from real penetration testing engagements and lab assessments. Every report is fully redacted: client names, hostnames, IPs, and identifying screenshots are replaced with neutral lab equivalents. Reports follow industry-standard structure — executive summary, scope, methodology, findings, evidence, and remediation.

Available Reports

Sanitized PDF reports will be published here as engagements complete sanitization review. The metadata structure is already in place for future automated listing.

  • Acme SaaS — Web Application Assessment (coming soon)
  • Internal AD Engagement — Domain Compromise Path (coming soon)
  • Cache Poisoning Research Brief (coming soon)

Report Format

Each published report contains:

  1. Executive Summary — risk-rated overview for non-technical stakeholders.
  2. Scope & Methodology — what was in scope, the testing approach, and any constraints.
  3. Findings — each finding rated by CVSS / business impact, with reproduction steps.
  4. Evidence — sanitized screenshots and request/response excerpts.
  5. Remediation — concrete, actionable fixes prioritized by impact.
  6. Appendix — methodology references, tooling versions, and timeline.

Request a Sample

Recruiters and hiring managers can request a complete sanitized sample report for evaluation. Reports are shared under a lightweight NDA when more sensitive sanitized content is involved.

Request Sample Report Read Writeups