I’ve been working more on penetration testing methodology lately and the same thought comes up again and again. How do I handle all the output and tracking of tasks effectively? Particularly when dealing with multiple employees at different physical locations. Write custom scripts, or programs to pull in data to a database and then create others to write out reports? One thing I have come across to solve this problem is FaradaySEC, which is doing something very interesting in terms of managing and reporting on output from pentesting activities. Check it out.