Recently, I've been doing a lot of penetration test reports. It's given me lots more insight on forming a better report, my initial reports were subpar at-best now that I've done dozens of them. I thought I'd make this post and share some tricks I've learned along the way, and things to avoid.
Have you ever been faced with a bug that feels like it'll never end? As one door closed you find four more opened up in their place, and the complexity multiplies? I believe it's safe to say we've all been there, and possibly years later the after-effects of the bug still remain. To fix