Workspace

What the Workspace does

The Workspace is the core view of PentestPath. It combines:

• a visual attack graph
• node metadata and notes
• scope and target context
• findings and evidence linkage
• right-side modules such as Arsenal and AI

Graph model

Nodes represent meaningful engagement steps such as recon, exploitation, lateral movement, privilege escalation, or loot. Each node can carry:

• title
• type
• status
• severity
• tags
• notes
• CVSS score
• credentials or attachments

Why it matters

The graph is not only a drawing surface. It is also the context source for:

• command suggestions in Arsenal
• reporting content
• engagement progress tracking
• evidence organization

Practical workflow

1. Create a node for the current step.
2. Update tags and notes as you validate the path.
3. Link findings and evidence instead of storing them separately.
4. Use auto-layout when the graph starts to sprawl.

Related pages

• Arsenal
• Findings & Evidence
• Keyboard Shortcuts