Home
Reports
This section describes how to generate reports from the scan results.
Industry Standard and Compliance reports
Industry Standards reports let you know if your application complies with standards of a selected industry committee; Regulatory Compliance reports let you know if your application complies with specific regulations or legal standards.
Regulatory Compliance reports
The Regulatory Compliance report lets you know if your application complies with regulations or legal standards.

Welcome
Welcome to the documentation for HCL AppScan Standard version 10.4.0
Getting started
This section provides a short tour of basic product features and procedures, including using the wizard to set up a scan.
Configuration
You configure a scan by choosing settings that best describe your application, and the kind of testing you want.
Manual exploring
Manual exploring enables you to explore specific parts of your application, filling in fields and forms as you go. This can be a way of ensuring that particular areas of the site are covered, and that AppScan has the information needed to complete forms correctly.
Scanning
Learn how to start a scan, and what happens during the scan; how to manually manipulate the Explore stage, and how to export the results of a scan.
Data
Data view is populated with information about the structure of the site during the Explore stage of the scan.
Issues
Issues view provides access to the results of a scan. You can view results at a high level or select specific tests or objects and access more details. These details include how to fix, requests/responses, and differences between the test variants that resulted in issues. You can manipulate the severity of issues, resend tests (with or without modifications), and create reports based on Issues.
Reports
This section describes how to generate reports from the scan results.
- Report overview
- Security reports
  The Security report provides information about security issues discovered, and you can choose from a variety of templates depending on the type of content you need.
- Industry Standard and Compliance reports
  Industry Standards reports let you know if your application complies with standards of a selected industry committee; Regulatory Compliance reports let you know if your application complies with specific regulations or legal standards.
  - Industry Standard reports
    The Industry Standards report lets you know if your application complies with standards of a selected industry committee.
  - Regulatory Compliance reports
    The Regulatory Compliance report lets you know if your application complies with regulations or legal standards.
    - Supported versions
      A list of supported Regulations and versions.
  - User-defined reports
    You can create user-defined templates for either the Industry Standards or Regulatory Compliance reports.
- Delta Analysis reports
  The Delta Analysis report compares two sets of scan results and shows the difference in URLs and/or security issues that were discovered in them.
- Template-based reports
  The Template Based tab of the Create Report dialog box enables you to create reports in Microsoft® Word DOC and DOCX formats, with exactly the data you want, and the document formatting you define.
Tools
This section explains how to use additional tools provided with HCL AppScan Standard.
Integrations
This section describes integrations of other applications with AppScan Standard:
Best practices
This section contains some best practices and use cases for advanced users.
FAQ & Troubleshooting
CLI
This section describes the syntax and options available using the Command line interface.
References
Menus and toolbar summaries, and glossary

Regulatory Compliance reports

The Regulatory Compliance report lets you know if your application complies with regulations or legal standards.

About this task

There is a long list of templates from various countries to choose from, each template providing a compliance report for a different regulation.

If you do not find the regulation that you need in the list, you can create your own Regulatory Compliance report template (see User-defined reports for details).

The Regulatory Compliance reports include the following sections:


Section Title	Information Presented
Description	Explanation of the regulation.
Compliance Summary	List and count of non-compliance issues. Note that a single issue may indicate non-compliance of more than one section, and therefore the number of issues per section, for all the sections, may be more than the number of unique issues.
Unique Compliance Issues	List of non-compliant URLs, relevant parameters or cookies, and test names. Each issue appears once only.
Compliance Issues by Section	Detailed explanations of how your application is non-compliant, with remediation to address issues.

The figure below shows a sample from a Regulatory Compliance Report.

Procedure

On the navigation bar, click Report > Regulatory Compliance
Do one of the following:
- Select one of the listed Regulatory Compliance Report Templates:
- Select the User Defined radio button and enter or browse to a custom Regulatory Compliance template file (*.asreg). See User-defined reports for details.
If you want to control the appearance of the report, open the Layout tab (see Configuring report layout).
Click Preview to generate and view the report within AppScan®; or click Save Report to generate and save it to a file.