Attack Simulation Training
Run phishing simulations and security awareness training campaigns to test and educate users.
Simulation Types
| Technique | Description |
|---|---|
| Credential harvest | Fake sign-in page to capture credentials |
| Malware attachment | Simulated malicious attachment |
| Link in attachment | Phishing link within document |
| Link to malware | Direct link to simulated malware |
| Drive-by URL | Simulated exploit via URL |
Simulation Workflow
- Select technique — Choose phishing simulation type
- Choose payload — Select or customize email template
- Target users — Select users or groups
- Configure landing page — Training shown when user falls for simulation
- Schedule — Set delivery time and duration
- Launch — Start the simulation
Results
- Compromised rate — Percentage of users who fell for the simulation
- Click rate — Users who clicked the phishing link
- Report rate — Users who reported the phishing email
- Training completion — Users who completed assigned training
API Reference
POST /api/security/attack-sim/simulations— Create simulationGET /api/security/attack-sim/simulations/:id/results— Get results
Last updated on