Audit Logs provide a historical record of activity within the platform. This feature allows administrators to track changes and monitor user actions.
Accessing Audit Logs
Pentester Portal: Navigate to the left-hand menu and go to Settings > Administration > Audit Logs.
Client Portal: If enabled from the Pentester Portal, clients can view their activity by navigating to Settings > Audit Logs within the Client Portal.
How to Enable Audit Logs for Clients
You can control whether a client has access to view their own audit logs in the Client Portal. To grant access:
Navigate to Settings > Clients from the left-hand menu.
Select the relevant client from your list.
Go to the Client Portal tab.
Enable the Audit Logs toggle.
Key Features
The Audit Logs interface is designed to help you quickly find the historical data you need.
Detailed Event Records: Each log entry captures the Event Name, User, Timestamp, and a context message explaining the event.
Advanced Filtering: By default, the log displays events from the last 7 days. You can narrow down your search by filtering by Date, User, Client, or specific Event Names.
Export to Excel: You can export the Audit Logs to an Excel spreadsheet.
Data Retention: By default, audit log data is retained for 30 days.
What Events are Tracked?
The system tracks a wide variety of actions across the platform. You can filter for these specific events using the "All Events" dropdown. Tracked categories include, but are not limited to:
User Activity: User created, activated, deleted, login success, login failed, locked out, and email confirmed.
Projects: Project created, deleted, status updated, workflow task checked/unchecked, new client/internal messages, and task assignments.
Reports: Report published, report unpublished, report deleted, report text rewritten, and report PDF downloaded.
Findings: Finding created, updated, deleted, severity updated, status updated, evidence created/updated, and internal/client messages.
Settings & Administration: Creation, updates, and deletion of Templates (Reports, Quotes, Benchmark, Checklist, Compliance Norm), Assets, and Labels.
System & Integrations: Notification sent, Webhook triggered/errors, Salesforce triggered/errors, and AI Prompt updates.
Tracking Report Actions within Projects
In addition to the global Audit Logs, major report actions are also recorded directly within the context of specific projects.
Actions such as "Report deleted", "Report published", "Report unpublished", and "Report text rewritten" are logged as project events and can be viewed directly in the project's Messages tab.
How to view project events:
Navigate to your project and open the Messages tab.
By default, this view only shows user messages. To see the automated report actions, change the filter on the right-hand side from "User Messages" to "Full Activity".