Reading network scan results

When a network scan finishes, open its results to see what the agent discovered — the hosts on the range, the services running on them, and the vulnerabilities found. This page covers the ways to slice that data.

Findings grouped by vulnerability

Findings are collected by vulnerability reference, so a single issue that appears across many hosts shows up once with all its affected hosts attached. This keeps the results focused on distinct problems to fix rather than a long, repetitive list.

Explore by host

Switch to a per-host view to see everything found on a single machine — its services and the vulnerabilities affecting it. This is the natural view when you’re working through one system at a time, or investigating a host that stands out.

Top vulnerabilities by host

An aggregation that surfaces the hosts carrying the most or most serious issues. Use it to decide where to start: the hosts at the top of this list usually give you the biggest risk reduction for the least effort.

Topology / map view

A map of the hosts the scan discovered, so you can see the shape of the network rather than just a flat list. It’s a quick way to spot hosts you didn’t expect to find and to understand how the discovered systems relate.

Exporting results

Choose Export PDF to download a scan’s results — a self-contained PDF of the findings from that scan run — to share with people who don’t work in the app or to keep an external record.

Exporting requires permission to manage network scans. If you don’t see the Export PDF button, ask an administrator — see Allow-rules.

What’s in the PDF

The export is a complete, audit-ready report, not just a list of findings. It includes:

• A cover page and document control block (targets, dates, classification), plus a table of contents.
• Executive summary — a host summary, top services detected, and the severity distribution and breakdown with the top critical and high findings.
• Scan scope and methodology — target information, scan timing, and scope limitations.
• Risk summary and detailed findings (with affected hosts).
• Accepted risks, where applicable.
• Appendices — glossary, a network exposure and severity scale, scanner information, and the full host (and CVE) inventory — plus a report attestation.

If your organization uses white-label theming, the report is branded with your logo.

Programmatic access

The API can list a scan’s hosts and vulnerabilities as JSON for your own reporting — see CI/CD automation.

Tip

Start with top vulnerabilities by host to prioritize, then drop into the per-host view to work through each system. The grouped-by-vulnerability view is best when you want to fix one class of issue everywhere it appears at once.

Where to go next

• Scan configurations — adjust a configuration and run again after you’ve remediated.