Review & QA

Overview

Review Notes in AttackForge can be created against Vulnerabilities and Project Executive Summary.

Review notes help teams keep track of the changes needed, and all communication in one place.

Creating Review Notes for Vulnerabilities

Start by creating Review Notes for each of your vulnerabilities. You must have Edit permissions on the project to view and create review notes.

Start a new thread on a topic; or reply to a note in an existing thread.

Set your notification preferences. An email will be sent to the person who created the vulnerability to notify them of your revision note. You can also include additional persons to be notified, if required.

Reply to an existing note in a thread. An email will be sent to the person you are replying to. You can include additional persons to be notified, if required.

Creating Review Notes for Executive Summary

You can also create review notes within executive summary.

Bulk Review/QA on Vulnerabilities

To perform efficient reviews & QA, you can select multiple vulnerabilities that you wish to review, and then review each vulnerability one-by-one. You can access all information, including evidence & review notes, on one screen.

If you need to perform QA on multiple vulnerabilities, or would like to review each vulnerability one-by-one (from one screen) - you can select the vulnerabilities then click on Actions -> Edit.

Click on the Review tab, then enter your review comments. Once you are finished, click on the next vulnerability using the directional arrows.

Once you have finished reviewing all vulnerabilities, you will see the Next option is no longer available - meaning you have reached the end of the review.