Reports

Generate executive and technical reports summarizing your organization's external security posture. ShadowMap produces downloadable reports for stakeholder communication, compliance documentation, and internal security reviews.

Overview

The Reports page displays available reports as a card grid, organized by date. Each report card shows the report date and download buttons for the available report types. Reports are paginated, and a date range filter in the header lets you find reports from specific time periods.

Report Types

Each report date may include up to three report types:

Report Type	Description	Formats
Full Report	Comprehensive summary of all findings across your entire attack surface at the report date. Includes asset counts, vulnerability breakdown, risk distribution, and detailed findings.	PDF, Excel
Differential Report	Shows only what changed since the previous report -- new findings, resolved findings, and status changes. Useful for tracking progress between reporting periods.	PDF, Excel
Daily Summary	Condensed daily overview of key metrics and notable changes. Designed for daily operational review.	Excel

"Not available" is displayed when a report type has not been generated for a specific date.

Generating and Downloading Reports

1. Navigate to Reports in the left sidebar
2. Use the date range picker in the header to filter to your desired time period (optional)
3. Browse the report cards to find the date you need
4. Click the PDF button (picture icon) to download a formatted PDF report
5. Click the Excel button (table icon) to download a spreadsheet version

Reports are generated automatically by ShadowMap on a scheduled basis. Both PDF and Excel formats are available for Full and Differential reports; Daily Summary is available in Excel format only.

Date Range Filtering

The date range picker in the header filters the report list to show only reports within the selected date range. This is useful for:

• Finding reports from a specific compliance reporting period
• Reviewing progress over a quarter or month
• Locating the report closest to a specific incident date

Click the X icon to clear the date filter and show all available reports.

Report Content

Full Report (PDF)

A typical Full Report includes:

• Executive summary -- High-level overview with risk scores and key metrics
• Security rating -- Your organization's current security rating with breakdown
• Asset inventory summary -- Count and classification of discovered assets
• Vulnerability breakdown -- Findings by severity, category, and module
• Finding details -- Individual findings with risk level, description, and remediation guidance
• Trend analysis -- How your security posture has changed over time

Full Report (Excel)

The Excel version provides the same data in a structured, filterable spreadsheet format suitable for:

• Internal analysis and pivot tables
• Integration with GRC tools
• Custom reporting and dashboards
• Sharing specific data with remediation teams

Differential Report

The Differential Report highlights changes since the last reporting period:

• New findings -- Findings discovered since the previous report
• Resolved findings -- Findings that have been closed or remediated
• Status changes -- Findings that changed severity, status, or ownership
• Net change -- Overall movement in your security posture

Related

• Dashboard Overview
• Security Rating
• Alerts
• Vulnerability Overview