Whitespots Wiki
Whitespots Wiki
Home
Security Assessment
Vulnerability monitoring
Building SSDLC
About
Management hints
How to connect security to business
SDLC (Secure Development Lifecycle)
Practices implementation
Design
Implementation
Asset discovery
BugBounty
Security champions
Continuous Phishing simulations
Useful Tools
Scanners
Services
Hack space
OSINT
Mobile
WEB
Powered by GitBook

Continuous Phishing simulations

You will get

A list of trained employees who were vulnerable to the phishing attack and whos access to your money and production services could cost you that money and reputation.

Scenarios

You need to develop as many scenarios, as you can. Even if you feel, that you would not open the link/input any data. You are not the target in some scenarios if you are reading this :)

Scenarios can be based on:

  • World trends (COVID-19 for now)

  • Popular social networks in your country

  • Your infrastructure stack

  • Target group interests

Templates

Frequency

Don't make it the pattern. Your colleagues should not receive phishing mails each friday or each first day of the month. Phishing should be unexpected.

Groups

Split your employees by groups properly. Be aware, that they will share the information

Metrics

  • Open rate (ok)

  • Click rate (people should receive some learning materials with the test)

  • Submit rate (your potential leakages)

Automation

Have questions?

Write to us and get a free consultation.

Website: whitespots.io Email: [email protected]

Practices implementation - Previous
Security champions
Next - Useful Tools
Scanners
Last updated 1 year ago
Contents
You will get
Scenarios
Templates
Frequency
Groups
Metrics
Automation
Have questions?