Database of Findings

xlandrexl · January 4, 2024, 12:05pm

Hello all!

I’m finishing up polishing my reporting skills before I give it a try to the CPTS Exam, and a question surges:

Is there any public database of findings?

I imagine that as pentesters come across the same findings multiple times (for example, Weak Credentials), there could be a database with that information.

I tried using reporting tools such as SysReptor and WriteHat, but the Findings Databases are basically empty (SysReptor has about 10 templates).

I also tried googling but didn’t find anything helpful.

I really appreciate any help you can provide.

Happy hacking

kim_nancy · January 8, 2024, 8:11am

No there isn’t a central public database exists for findings like Weak Credentials. Explore OWASP, NIST’s NVD, and engage with the security community for insights. Keep in mind that specific organizations may have their own databases.

Topic		Replies	Views
Where can I read real life write ups/reports? Writeups	1	366	January 31, 2021
Documentation & Reporting - Skills Assessment Academy	58	6087	December 13, 2024
Access writeup by x41 Writeups write-up	0	376	March 2, 2019
Pentesting methodologies Off-topic	0	277	December 25, 2022
Writehat documenting Academy tools	2	962	November 28, 2023

Database of Findings

Related topics