Document My Pentest

Document My Pentest creates a description of whatever you are trying to test. Whether you're probing for path traversal, SQL injection, XSS, or other vulnerabilities, Document My Pentest tries to understand what you are doing and documents it for you.

Features

• AI-generated notes based on your testing activity.
• Works seamlessly with Repeater and Proxy History items.
• Notes are editable for accuracy and customization.
• If configured, automatically sends notes to Organizer.

Usage

Repeater

1. Use Repeater as you normally would while testing a target.
2. When you're ready to document your work, simply right-click and select "Extensions -> Document My Pentest -> Document my work".
3. The AI will generate notes for you automatically.

Proxy History

You can also right-click on item(s) in the Proxy History and document a pen test as separate requests or as a collection of requests and responses.

• Select "Extensions -> Document My Pentest -> Document my work (separately)" to create notes on each request and response as a separate attack.
• Select Extensions -> Document My Pentest -> Document my work (as collection) to combine notes for all selected items into the last selected entry.

Automatic documentation

• Enable "Document My Work -> Settings -> Auto invoke after Repeater requests".
• Enable "Document My Work -> Settings -> Auto send notes to Organizer".

Corrections

AI isn't flawless - sometimes it gets things wrong. You can manually edit the generated notes to make corrections as needed.

Copyright © 2025 PortSwigger Ltd.