| Report Type | Description | Download Options |
| Executive Summary | Provides a high-level overview | PDF, HTML |
| Network | Provides Executive Summary and includes asset by asset details with findings | PDF, HTML |
| External Detailed | Provides the same info as the Network Report for External assets only and includes additional information, such as the domain/IP WHOIS and DNS | PDF, HTML |
| Top Vulnerabilities | Provides vulnerability by vulnerability details and a list of affected assets for up to 25 top vulnerabilities | PDF, HTML |
| Log4J Audit | Lists assets with Log4J related findings | PDF, HTML |
| Agent Inventory | Provides details about all agents (current and former) | CSV |
| Current Inventory | shows details about all assets currently in the customer’s dashboard (last 30 days) | CSV |
| Historical Inventory | Shows all assets ever discovered even if they are no longer on the network | CSV |
| Exceptions | Details all customer created exceptions including vulnerability modifications, OS overrides, and decommissioned assets | PDF, HTML |
| PlexTrac JSON | Imports CVE findings into PlexTrac including asset details. | JSON |
| XML | Provides asset info, vulnerability info with risk and severity details | XML |
| CVE CSV | Includes CVE details, CVSS score, Host UUID, hostname, mac address, mac vender, IP address, host’s Nodeware score and OS | CSV |
| Patch Status | Provides patch info, such as patch status, install date, KB number and asset info (OS, hostname, IP, Mac address, UUID, Nodeware score) | CSV |
| CVE Historical | Provides comprehensive visibility into the lifecycle of vulnerabilities | CSV |
Executive Summary
Provides a high-level overview including:
• Overall score
• Top vulnerabilities
• Most common vulnerabilities
• Criticality breakdown (Critical, High, Medium, Low)
• CVE statistics
o Total CVEs
o Unique CVEs
o Modified CVEs
o Resolved CVEs
• Asset overview, totals and breakdown, asset score
o Scan methodology
Network Report
This report provides the same Executive Summary as above and includes asset by asset details with findings.
External Detailed Report
This report provides the same information as the Network Report but only includes External assets. Additional information on WHOIS and domain ownership are included.
Top Vulnerabilities Report
This report provides vulnerability by vulnerability details and a list of affected assets for up to 25 top vulnerabilities.
Log4J Audit Report
This report list assets with Log4J related findings.
Agent Inventory Report
This report provides details about all current and former agents. The report includes:
• IP/MAC Address
• MAC Vendor
• Hostname
• OS
• Alias
• Tags
• First/Last Seen Date/Time
Current Inventory
This report shows details about all assets currently in the customer’s dashboard for the last 30 days and includes the same report fields as the Agent Inventory Report.
Historical Inventory Report
This report shows all the assets ever discovered even if they are no longer on the network and includes the same report fields as the Agent Inventory Report.
Exceptions Report
This report details all user created exceptions including:
• Vulnerability modifications
o Accepted Risk
o False Positive
o Compensating Control
• OS overrides
• Decommissioned assets
It is intended as a summary document useful for evidence-based compliance recordkeeping and as a companion to a full vulnerability report.
PlexTrac JSON Report
This report is a JSON-formatted export designed to import findings into PlexTrac. It includes asset details and findings.
XML Report
This report includes asset information and vulnerability data with risk and severity details
CVE CSV Report
This a .csv report that includes the CVE details, CVSS score, host UUID, hostname, mac address, mac vender, IP address, host’s Nodeware score and OS.
Patch Status Report
This report includes patch information, such as patch status, install date, KB number and asset information (OS, hostname, IP, Mac address, UUID, Nodeware score).
CVE Historical Report
This report delivers comprehensive visibility into the lifecycle of vulnerabilities. Provides the status of each CVE (Active or Resolved) along with the first and last detected timestamps. It calculates the delta days for each CVE, which represents the number of days between the initial detection of the CVE and the first scan in which it no longer appears. This metric enables customers to interpret remediation timelines in alignment with Time to Resolution (TTR). Daily asset scanning ensure the report provides near real-time accuracy in tracking remediation performance.
Comments
0 comments
Article is closed for comments.