CherryTree
public-pentesting-reports
Our great sponsors
CherryTree | public-pentesting-reports | |
---|---|---|
59 | 27 | |
3,221 | 8,025 | |
- | - | |
9.4 | 5.4 | |
14 days ago | 20 days ago | |
C++ | HTML | |
GNU General Public License v3.0 or later | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
CherryTree
- Cherrytree Releases 1.0.0
- Digital notetaking?
-
Personal "database" for storing work experience information?
I am started using CherryTree. (There is a screenshot here.)
-
Ask HN: Using Markdown Files for Notetaking?
I wonder if an extensible editor (example: Atom) could do both of those things with Markdown files. Assuming by styling you mean things like being able to highlight and custom-style some text, even in a typically text-only view of a markdown file. It wouldn't be a big surprise if that could be done...somehow. Collapsible points ought to be doable for sure.
Personally I use other methods for styling within markdown, for example emoji, tags, link formatting with brackets (for things that are not really links), etc.
I also take any list that's longer than 8-10 items and break it up by category or reorganize it so it's less visually overwhelming.
Otherwise you may find it helpful to look into more rich-editor-style notetaking solutions like cherrytree or Notecase Pro. The latter is proprietary but I used it for years and was very happy with it. Good luck in your search.
- website down
-
Journal Writing App
I'm kinda surprised no one mentioned cherrytree yet.
-
hierarchical note taking applications
cherrytree
-
Best book writing app?
I use FocusWriter. It's a lightweight, full-screen app that does more than enough for a manuscript. I used to use Google Docs with Wavemaker, which has a lot of extra functions like cards and timelines, etc. Docs slowed down a lot with a lot of open windows or really long docs, however. And with WFH the sync isn't that important to me anymore. For notes lately I've been using CheeryTree. All these are free.
-
Share your greatest free tools
CherryTree for a general note-taking database. As an Application Packager I can't remember PowerShell scripts I wrote two weeks ago, so saving my recipes in here is priceless.
-
I've reached 2800 mods. Never do that.
How do you keep track of/document everything? I have been using Cherry Tree. It is a fancy open source note taking program that lets you keep notes in a tree like structure.
public-pentesting-reports
-
Yet another eCPPTv2 Review
You might find https://github.com/juliocesarfort/public-pentesting-reports repository useful if you need to see how reports are generally structured and written.
-
Reporting question
As for templates, to be honest, I haven't come across many templates floating around. You could look through public pentest reports (https://github.com/juliocesarfort/public-pentesting-reports) and borrow the bits that you prefer and drop them into TCM's template and make it your own.
-
Redteam sanitized report
I know of this site https://redteam.guide/docs/Templates/report_template/ which for me is down but maybe that is temporary, otherwise seek the cached or wayback version. There are also these https://github.com/juliocesarfort/public-pentesting-reports which are pentesting reports but you may find a number that are more about red teaming or have elements of red teaming which you can refer to.
-
Wanting to get into to security
A repository of pentest reports. Writing reports is the most important component of pentesting and redteaming. A pentester who cannot explain what they did, what they found and what the recipient should do to fix their issues is of limited value.
- Penetration testing reports
-
Information to include when writing a Pentesting Report
If you're anything like me, examples help tremendously and so: https://github.com/juliocesarfort/public-pentesting-reports
-
What is a good way to evaluate a pentesting agency?
For good examples, look here. I'd do a test with most of the firms on that list.
- I need help with a pentest report :(
- How often do you communicate with non-technical people in this field?
-
Log4j: The Pain Just Keeps Going and Going
I'd say don't let yourself be discouraged by GP. Just look into a company before you apply. Many have public reports you could look at or security research they publish, both of which you could use as indicators.
Here's a repo with lots of public audit reports by various companies, you could use that as a starting point: https://github.com/juliocesarfort/public-pentesting-reports
What are some alternatives?
Trilium Notes - Build your personal knowledge base with Trilium Notes
OSCP-Exam-Report-Template-Markdown - :orange_book: Markdown Templates for Offensive Security OSCP, OSWE, OSCE, OSEE, OSWP exam report
to-markdown - 🛏 An HTML to Markdown converter written in JavaScript
writehat - A pentest reporting tool written in Python. Free yourself from Microsoft Word.
atomic-red-team - Small and highly portable detection tests based on MITRE's ATT&CK.
Joplin - Joplin - the secure note taking and to-do app with synchronisation capabilities for Windows, macOS, Linux, Android and iOS.
tmux-logging - Easy logging and screen capturing for Tmux.
obsidian-leaflet - Adds interactive maps to Obsidian.md using Leaflet.js
Serpico - SimplE RePort wrIting and COllaboration tool
obsidian-minimal - A distraction-free and highly customizable theme for Obsidian.
TJ-JPT - This repo contains my pentesting template that I have used in PWK and for current assessments. The template has been formatted to be used in Joplin