Reviewing and Creating Reports

Generating Reports

• After selecting Generate Reports from the results dashboard:
  
  • If Prospecting - Follow the prompts to customize the report content and finalize the creation.
    • The Company Name is what will be printed on the report and used in the intro letter. 
    • The industry should match as close as possible to the target companies' industry. 
    • The Company Size should match the size of the target company. 

See below for Report Types

Prospector Scan Reports

Full Risk Report - PDF > Download

• This report should be considered an "Executive Report" and is intended to share with the client/prospect. It contains clients facing language and details about the scan results, along with information about risks associated with their industry. 

NOTE: The Full PDF report can be generated in "Light Mode" or "Dark Mode" depending on your preference. 

Monthly Executive - PDF > Download

• This report should be considered an "Executive Report" and is intended to share with the client/prospect. It contains clients facing language and details about the scan results, along with information about risks associated with their industry. 
• The language in this report is geared towards ongoing relationships and can be used as a monthly report to share with your clients - as a paid or unpaid service from your MSP. 

Vulnerability Report - PDF > Download

• This report contains a summary of ALL vulnerabilities on ALL hosts from the Prospector Scan, as well as some other vulnerability related data and is intended to share with the client/prospect. Please note that is does contain a good amount of technical language and may not be suitable for all clients or prospects. It can also be VERY long, so it is recommended to review before sharing with a client. 
• The language in this report is geared towards ongoing relationships and can be used as a monthly report to share with your clients - as a paid or unpaid service from your MSP.

 **BETA** Email Outreach Templates  > Online

• These report templates offer an opportunity for the IT provider to introduce themselves to the client/prospect and is intended to share with the client/prospect. 
  
• Each Template contains an introduction section, along with some details from the scan findings. 
• It is recommended to share these with the prospect after you have made initial introductions and are looking to "move the conversation forward" or make a secondary contact with them. 

NOTE: We do NOT recommend sending anything from Prospector as a "cold" introduction. It is meant to show the value of your services and build trust with a prospective client once an initial relationship has begun to develop (phone calls etc.). You are very likely to see the opposite if this is used for cold outreach. 

Excel Report - XSLT

• To download scan results in Excel format, go to the scan management dashboard and click the Excel download button.
• The Excel document will include detailed findings and data points from the scan.
• This report contains all technical details and may not be suitable for client consumption. We have found it to be most beneficial to the IT team. 

Prospector Scan Reports

Full Risk Report - PDF > Download

• This report contains a summary of findings as well as all vulnerabilities found on all hosts from the scan, as well as some other vulnerability related data and is intended to share with the client/prospect. Please note that is does contain a good amount of technical language and may not be suitable for all clients or prospects. It can also be VERY long, so it is recommended to review before sharing with a client. 
• The language in this report is geared towards ongoing relationships and can be used as a monthly report to share with your clients - as a paid or unpaid service from your MSP.
  • NOTE: vulnerabilities in these reports are automatically sorted by priority using EPSS/CVSS and can also be a great resource for technical teams to use for remediation efforts. 

Executive Summary - PDF > Download

• This report contains a summary of findings as well as some other vulnerability related data and is intended to share with the client/prospect. This report is a high-level summary only and does NOT contain vulnerability data. 
• The language in this report is geared towards ongoing relationships and can be used as a monthly report to share with your clients - as a paid or unpaid service from your MSP.

Known Exploit - PDF > Download

• This report contains a summary of findings as well as details on all vulnerabilities with known exploits (as reported by CISA). It does not contain all vulnerabilities, only those with known exploits.  
• The language in this report is geared towards ongoing relationships and can be used as a monthly report to share with your clients - as a paid or unpaid service from your MSP.

Excel Report - XSLT > Download

• The Excel document will include detailed findings and data points from the scan.
• This report contains all technical details and may not be suitable for client consumption. We have found it to be most beneficial to the IT team.

MS365 Scan Reports

Interactive Report - Online

• The default view for the MS365 scan dashboard is an interactive online report. This report contains a ton of great information for the MSP to learn more about a client tenant, find security issues, and is a great place to work from when securing a client. We have found it especially helpful for security assessments and client onboarding.
  
  • Tenant Summary: This section offers a high level overview of the tenant security posture, as well as key insight into licenses, activated services, Global Admins, etc. It is a quick snapshot into the health of a tenant. 
  • Security Recommendations: Primarily derived from Secure Score data, these items are a risk weighted roadmap to securing a tenant. By clicking on details, you can instantly get data on a control, such as implementation status, why it is important, and follow links to go directly to the correct MS365 Admin portal for remediation. 
  • Conditional Access Policies **Beta**: This section lists conditional access policies by title, along with their status. It serves as a quick way to review CA policies and ensure they are enabled when intended. 
  • On-Premise Sync Information: This section shows the current settings for On-Premise sync (when enabled) and can be used to aid in projects and troubleshooting.

Full Risk Report - PDF > Download

• This report contains a summary of findings as well as high level tenant data and is intended to share with the client. This report language is geared towards a non-technical audience and is intended to highlight risks to the client. 
• This report is intended to act as a sales and security roadmap for the MSP. It is recommended to take a consultative approach in reviewing the report - and to know what licenses, service packages, and project work would be required to get the client to the target score and beyond. 
  • NOTE: The recommendations in this report are primarily derived from Microsoft Secure Score data. If you see items with issues like false positives, they can often be remediated or addressed within the Secure Score Portal (not all items). 

Executive Summary - PDF > Download

• This report contains a summary of findings as well as high level tenant data and is intended to share with the client. This report language is geared towards a non-technical audience and is intended to highlight risks to the client. 
• This report is intended to act as an initial sales-oriented document for the client and contains only top recommendations (as rated by risk impact). It is recommended to take a consultative approach in reviewing the report - and to know what licenses, service packages, and project work would be required to get the client to the target score and beyond. 
  • NOTE: The recommendations in this report are primarily derived from Microsoft Secure Score data. If you see items with issues like false positives, they can often be remediated or addressed within the Secure Score Portal (not all items).