After our pentests
- We will send you the report in PDF format (encrypted, password via second channel) as soon as possible (usually a few days) after the tests. In some
cases it can take a little longer, but a maximum of four weeks. - It is very important to us that you also work with our report and that you
derive improvement measures from it. That's why we will re-test fixed weaknesses
for you free of charge if they are corrected within eight weeks!
Please let us know when everything has been fixed so that we can check everything collectively. - It makes sense to keep our accesses and user accounts active until re-tests have finished.
- As soon as they are no longer needed, please deprovision everything that is no longer needed.
How we send our reports
We provide our reports via password-protected sharing links. From there, the report can be downloaded as an encrypted PDF file. Due to the TLS/HTTPS-protected connection, the data transmission is encrypted ("Encrypted Data in Transit"), while the encrypted PDF report ensures that the stored report is also encrypted ("Encrypted Data at Rest").
The validity of the links is limited in time (by default: two weeks).
Upon client request, we are also happy to transmit the report as an encrypted PDF file via email.
We transmit the necessary passwords through a secondary channel (recommended: Signal Messenger; alternatively, for example, via SMS).