# Vulnsy > Vulnsy is a SaaS penetration testing report management platform for security consultants and teams. It handles the full pentest lifecycle — client management, engagement scoping, vulnerability findings, multi-tab report building, automated DOCX export, client portal delivery, and team collaboration with role-based access control. Vulnsy runs entirely in the browser with nothing to install. Vulnsy replaces spreadsheets, shared drives, and manual Word document editing for pentest teams. Security professionals use it to manage clients, track engagements, maintain reusable finding libraries, and generate professional reports from customizable Word templates. ## Who Vulnsy Is For - Independent penetration testers managing their own client base - Security consultants collaborating with team members on projects - Security teams centralizing pentest operations with role-based access and standardized templates - Managed security service providers (MSSPs) delivering reports to multiple clients ## Core Features - **Client management** — track companies, contacts, and full engagement history - **Project and engagement tracking** — define engagements with types (web app, infrastructure, mobile, cloud, API, IoT), dates, and team assignments - **Scoping calculator** — estimate engagement effort, costs, and generate figures for proposals and statements of work - **Finding library** — reusable vulnerability templates organized by category (web app, infrastructure, mobile, cloud, API, IoT) with severity ratings (critical, high, medium, low, informational) - **Multi-tab reports** — build reports with separate sections for different test areas, each with its own findings and narrative sections (executive summary, scope, methodology) - **Automated DOCX export** — generate professional reports from customizable Word templates using placeholder tags with export tag prefixes for multi-tab support - **Search and replace** — bulk variable replacement across report content before export - **Client portal** — secure, read-only portal for sharing reports with clients, with download access and email notifications - **QA workflow** — route reports through review and approval cycles before client delivery - **Team collaboration** — role-based access control for admins, consultants, contractors, and clients - **Email templates** — customizable email notifications - **Webhooks** — integrate with external systems via webhook events - **API access** — OpenAPI-documented REST API for automation and integrations - **Multi-tenant architecture** — fully isolated organization workspaces ## Pricing Plans - **Solo** — individual consultants working independently - **Team** — small security teams (2-5 members) - **Group** — growing organizations scaling pentest operations - **SME** — established security firms with larger teams - **Enterprise** — custom pricing, dedicated support, SLA guarantees, custom onboarding ## Data Model Organization > Client > Project (type, dates) > Findings (severity, description, impact, remediation, evidence) + Report > Tabs (export tag prefix) > Narrative Sections + Assigned Findings > Export via DOCX Template > Final Report ## Documentation - [Getting Started](https://docs.vulnsy.com/docs/getting-started): Overview, requirements, and initial setup - [Quickstart Guide](https://docs.vulnsy.com/docs/getting-started/quickstart): Create your first client, project, and report in under five minutes - [Core Concepts](https://docs.vulnsy.com/docs/getting-started/concepts): Understand the data model — organizations, clients, projects, findings, reports, and templates - [Clients](https://docs.vulnsy.com/docs/clients): Managing client companies and contacts - [Managing Clients](https://docs.vulnsy.com/docs/clients/managing-clients): Create, edit, and organize client records - [Projects](https://docs.vulnsy.com/docs/projects): Creating and managing pentest engagements - [Creating Projects](https://docs.vulnsy.com/docs/projects/creating-projects): Set up new engagement projects - [Scoping Calculator](https://docs.vulnsy.com/docs/projects/scoping): Estimate effort and costs for proposals - [Findings](https://docs.vulnsy.com/docs/findings): Building your vulnerability library - [Creating Findings](https://docs.vulnsy.com/docs/findings/creating-findings): Add findings to reports and your library - [Finding Library](https://docs.vulnsy.com/docs/findings/finding-library): Manage reusable vulnerability templates - [Evidence](https://docs.vulnsy.com/docs/findings/evidence): Attach screenshots and proof to findings - [Severity Levels](https://docs.vulnsy.com/docs/findings/severity-levels): Understand severity ratings - [Reports](https://docs.vulnsy.com/docs/reports): Building reports, exporting, and template tags - [Report Tabs](https://docs.vulnsy.com/docs/reports/tabs): Organize reports into testing areas - [Narrative Sections](https://docs.vulnsy.com/docs/reports/narrative): Write executive summaries, scope, and methodology - [Report Findings](https://docs.vulnsy.com/docs/reports/report-findings): Add and manage findings in reports - [Exporting Reports](https://docs.vulnsy.com/docs/reports/export): Configure templates and generate DOCX output - [Creating Templates](https://docs.vulnsy.com/docs/reports/export/creating-templates): Build custom DOCX templates with your own branding - [Template Tags Reference](https://docs.vulnsy.com/docs/reports/export/template-tags): Complete reference for all available template tags - [Export Tag Prefixes](https://docs.vulnsy.com/docs/reports/export/export-tag-prefix): Use multi-tab exports with scoped tag prefixes - [Search and Replace](https://docs.vulnsy.com/docs/reports/export/search-replace): Bulk variable replacement before export - [Client Portal](https://docs.vulnsy.com/docs/portal): Share reports securely with clients - [Sharing Reports](https://docs.vulnsy.com/docs/portal/sharing-reports): Upload and manage documents in the portal - [QA Workflow](https://docs.vulnsy.com/docs/portal/qa-workflow): Review and approve reports before delivery ## Optional - [Administration](https://docs.vulnsy.com/docs/admin): Manage users, permissions, templates, and organization settings - [Permissions](https://docs.vulnsy.com/docs/admin/permissions): Configure role-based access control - [Report Templates](https://docs.vulnsy.com/docs/admin/report-templates): Manage DOCX export templates - [Organization Settings](https://docs.vulnsy.com/docs/admin/organization-settings): Configure branding, portal, modules, and storage - [Email Templates](https://docs.vulnsy.com/docs/admin/email-templates): Customize notification emails - [Billing](https://docs.vulnsy.com/docs/billing): Subscription plans and usage - [Plans](https://docs.vulnsy.com/docs/billing/plans): Compare subscription tiers - [Troubleshooting](https://docs.vulnsy.com/docs/troubleshooting): Common issues and solutions - [Common Errors](https://docs.vulnsy.com/docs/troubleshooting/common-errors): Diagnose and fix common problems - [Export Issues](https://docs.vulnsy.com/docs/troubleshooting/export-issues): Resolve DOCX export problems ## Links - Website: [https://www.vulnsy.com](https://www.vulnsy.com) - Documentation: [https://docs.vulnsy.com](https://docs.vulnsy.com) - Contact: sales@vulnsy.com