/pwndoc-ng

Pentest Report Generator

Primary LanguageJavaScriptMIT LicenseMIT

PwnDoc-ng

PwnDoc-ng is a pentest reporting application making it simple and easy to write your findings and generate a customizable Docx report. It is based on original fork of PwnDoc work by yeln4ts. The main goal is to have more time to Pwn and less time to Doc by mutualizing data like vulnerabilities between users.

Example Template Generated document
t1 t2

What's New ?

PwnDoc was originaly manage by its creator. After months of absence, an increase of issues and pending pull requests, we decided to open this maintained fork.

This fork includes pending PR and new feature such as:

  • Fix build error due to Node version
  • Fix LFI/RCE vulnerability
  • Tiptap 2.0 WYSIWYG
  • Collaborative editing
  • Table support
  • New filters
  • Reviewer variable
  • Remediation complexity color by @Syzik
  • Mongo-data volume from @noraj
  • Minor bumps ...

Documentation

Features

  • Multiple Language support
  • Multiple Data support
  • Great Customization
    • Manage reusable Audit and Vulnerability Data
    • Create Custom Sections
    • Add custom fields to Vulnerabilities
  • Vulnerabilities Management
  • Multi-User reporting
  • Docx Report Generation
  • Docx Template customization

Demos

Multi-User reporting

Shared Audit demo gif

Finding edition

Finding edit demo gif

Vulnerability management workflow

Create and update demo gif

Contribute

Developing with docker-compose

docker-compose -f docker-compose-dev.yml up

Feel free to contribute :).