Reports
Turn your scan results into professional reports that you can share with stakeholders, clients, or executives. Auto-Offensive provides 4 export formats, branded templates, and fine-grained scope filtering.
Overview
Reports are generated from a single scan job and stored on the platform for later download. You can produce multiple reports from the same scan (e.g., PDF for clients, XLSX for the team) or change the scope (all steps or selected steps).
What's in a report?
- Cover page with branding and project metadata
- Executive summary with severity distribution
- Per-step sections (subfinder, httpx, etc.) with results
- OWASP / CWE compliance mapping
- Asset risk scoring
- Job timestamps and tools used
Generate a report
Generate a report from a scan job with POST /reports/generate. The report is stored on the platform and can be downloaded later.
How to use via UI
- Navigate to your Scan details page.
- Click the 'Export Report' button at the top.
- Select your desired Format (e.g., PDF or DOCX).
- Click 'Generate' and wait for it to download automatically.
Export formats
Pick the format that fits your use case:
| Format | Best for | MIME type |
|---|---|---|
pdf | Executive briefings, client deliverables | application/pdf |
docx | Editable reports, redlines | application/vnd.openxmlformats-officedocument.wordprocessingml.document |
xlsx | Data analysis, raw findings export | application/vnd.openxmlformats-officedocument.spreadsheetml.sheet |
json | Programmatic processing, dashboards | application/json |
Layout selection
The report engine automatically picks table or list layout based on column count and format. Example — more than 5 columns in PDF switches to list layout to prevent overflow.
Templates & branding
Reports include Auto-Offensive branding by default. For self-hosted deployments, you can override branding via environment variables:
| Variable | Description |
|---|---|
REPORT_LOGO_PATH | Path to a logo image (PNG/JPG) |
REPORT_BRANDING_NAME | Brand name shown on the cover |
REPORT_PRIMARY_COLOR | Hex color for headings and accents |
Scope & filtering
Not every scan needs a full report. Configure the scope to highlight what matters:
| Field | Type | Description |
|---|---|---|
step_scope | enum | "all", "last", or "specific" |
step_ids | string[] | List of step IDs (when scope=specific) |
columns | object | Map of tool name → columns to include |
Setting Scope via UI
- Before clicking Generate, click on 'Advanced Options'.
- You can uncheck steps or columns that you do not want to include.
- The report will be generated only with your selections.
Manage reports
Reports are stored against your account. List, download, or delete them via REST API:
Managing via UI
- Go to the 'Reports' page from the left sidebar.
- You will see a table of all previously generated reports.
- You can download them again or click the 'Delete' button to remove them.
Filtering
Use the job_id and format query parameters to narrow the list. For example, ?job_id=job_xyz789 returns all reports generated from the same scan.