Finding fields
Title, affected asset, severity, CVSS, OWASP class, reproduction steps, payload, screenshot, and fixed-by owner.
Template page
Make validated findings readable by developers, auditors, and the person who owns the fix.
The sample report structure turns PoC validation into evidence fields that can survive triage and compliance review.
PoC validation
Strix emphasizes working proof-of-concept validation; the planner keeps that evidence separate from generic suspicion.
Review loop
The paid export includes 3-day and 6-day remediation checkpoints for open findings and noisy results.
Method boundary
This page helps plan authorized testing. It does not run Strix, attack targets, or verify vulnerabilities. Full workflow generation is gated by the pricing page.