• Tools
  • Features
  • Resources

Introduction

Getting Started

Platform Features

Scanning
AI Analysis
Code Scanning (SAST)
Reports
OverviewGenerate a reportExport formatsTemplates & brandingScope & filteringManage reports
Dashboard & Analytics

Developer Reference

REST API
CLI Reference
CI/CD Integration
Tool Tactics
⌘K

On this page

OverviewGenerate a reportExport formatsTemplates & brandingScope & filteringManage reports
PDF · DOCX · XLSX · JSON

Reports

Turn your scan results into professional reports that you can share with stakeholders, clients, or executives. Auto-Offensive provides 4 export formats, branded templates, and fine-grained scope filtering.

Overview

Reports are generated from a single scan job and stored on the platform for later download. You can produce multiple reports from the same scan (e.g., PDF for clients, XLSX for the team) or change the scope (all steps or selected steps).

What's in a report?

  • Cover page with branding and project metadata
  • Executive summary with severity distribution
  • Per-step sections (subfinder, httpx, etc.) with results
  • OWASP / CWE compliance mapping
  • Asset risk scoring
  • Job timestamps and tools used

Generate a report

Generate a report from a scan job with POST /reports/generate. The report is stored on the platform and can be downloaded later.

How to use via UI

  1. Navigate to your Scan details page.
  2. Click the 'Export Report' button at the top.
  3. Select your desired Format (e.g., PDF or DOCX).
  4. Click 'Generate' and wait for it to download automatically.
Async generation
Generating large reports (1000+ findings) can take several seconds. The endpoint returns synchronously, but if you need to ensure the report is fully built before downloading, poll the metadata.

Export formats

Pick the format that fits your use case:

FormatBest forMIME type
pdfExecutive briefings, client deliverablesapplication/pdf
docxEditable reports, redlinesapplication/vnd.openxmlformats-officedocument.wordprocessingml.document
xlsxData analysis, raw findings exportapplication/vnd.openxmlformats-officedocument.spreadsheetml.sheet
jsonProgrammatic processing, dashboardsapplication/json

Layout selection

The report engine automatically picks table or list layout based on column count and format. Example — more than 5 columns in PDF switches to list layout to prevent overflow.

Templates & branding

Reports include Auto-Offensive branding by default. For self-hosted deployments, you can override branding via environment variables:

VariableDescription
REPORT_LOGO_PATHPath to a logo image (PNG/JPG)
REPORT_BRANDING_NAMEBrand name shown on the cover
REPORT_PRIMARY_COLORHex color for headings and accents
Custom layouts
Self-hosted teams can override report templates by mounting custom HTML/CSS templates into the report service container.

Scope & filtering

Not every scan needs a full report. Configure the scope to highlight what matters:

FieldTypeDescription
step_scopeenum"all", "last", or "specific"
step_idsstring[]List of step IDs (when scope=specific)
columnsobjectMap of tool name → columns to include

Setting Scope via UI

  1. Before clicking Generate, click on 'Advanced Options'.
  2. You can uncheck steps or columns that you do not want to include.
  3. The report will be generated only with your selections.
Row capping
Reports cap rows at 1000 per step to keep file sizes reasonable. The is_truncated field in the response indicates when the cap is hit, and total_row_count reports the actual count.

Manage reports

Reports are stored against your account. List, download, or delete them via REST API:

Managing via UI

  1. Go to the 'Reports' page from the left sidebar.
  2. You will see a table of all previously generated reports.
  3. You can download them again or click the 'Delete' button to remove them.

Filtering

Use the job_id and format query parameters to narrow the list. For example, ?job_id=job_xyz789 returns all reports generated from the same scan.

Previous
Code Scanning (SAST)
Next
Dashboard & Analytics