FISMA Compliance Report Metasploit Pro provides the ability to generate FISMA reports for the penetration test. The generated FISMA report is an appendix for an SP800-53r3 FISMA Compliance Audit. Metasploit Pro tests for and reports on the following FISMA requirements: · AC-1: Access Control Policy and Procedures · AC-4: Information Flow Enforcement · AC-7: Unsuccessful Login Attempts · AT-1: Security Awareness and Training Policy and Procedures · AT-2: Security Awareness · CM-1: Configuration Management Policy and Procedures · •CM-7: Least Functionality · RA-1: Risk Assessment Policy and Procedures · RA-5: Vulnerability Scanning · IA-1: Identification and Authentication Policy and Procedures · IA-2: User Identification and Authentication · IA-7: Cryptographic Module Authentication · IA-8: Identification and Authentication (Non-organizational users) · SI-1: System and Information Integrity Policy and Procedures · SI-2: Flaw Remediation · SI-10: Information Output Handling and Retention