Phishing Simulation Training Sources

tedjamestedjames Scruffy-looking nerfherdrMember Posts: 1,163 ■■■■■■■■□□
Can you recommend some good companies for phishing simulation training? I'm looking for programs similar to what SANS offers: https://www.sans.org/security-awareness-training/products/phishing

If you have current pricing, that would be great.

I've been looking at SANS, Proofpoint, and KnowBe4 so far.

Comments

  • chrisonechrisone Senior Member Member Posts: 2,128 ■■■■■■■■■□
    We use PhishMe to simulate phishing attempts and to educate our users. 
    PhishMe has been bought out re-branded and upgraded by Cofense.

    https://cofense.com/ 


    Certs: CISSP, OSCP, CRTP, eCPPT, eCIR, LFCS, CEH, AZ-900, VHL:Advanced+, Retired Cisco CCNP/SP/DP
    2020 Goals:
    Courses: VHL (completed), CQURE: Windows Security Crash Course (completed), BlackHills InfoSec: Breaching the Cloud (completed), eLearnSecurity: WAPTv3 (completed), IHRP (completed), THPv2 (completed), PTXv2 (in-progress)
    Certs: VHL: Advanced+ (completed), OSCP (completed), AZ-500 (failed 1st attempt), eLearnSecurity: eWPT (failed 2x, no further attempts), eLearnSecurity: eCIR (complete), eLearnSecurity: eCTHPv2 (report: awaiting results), eLearnSecurity: eCPTXv2 (Late-Nov)
  • UnixGuyUnixGuy Are we having fun yet? Mod Posts: 4,224 Mod
    I used Wombat Security recently, they have good products. They have cool video training material, and a phishing simulation solution as well https://www.wombatsecurity.com/
    (they're owned by ProofPoint).


  • MeggoMeggo Administrator Admin Posts: 197 Admin
    edited January 2019
    @tedjames have you checked out the latest Gartner Magic Quadrant for Security Training & Awareness? We're (InfoSec Institute) in it this year as a Challenger, so of course we purchased distribution rights for the reprint. It also includes good info on the brands you listed above. If you're interested in taking a look, you can access it here: 

    https://www.infosecinstitute.com/gartner-magic-quadrant-2018/

    Completing the form on that page will put you in our database. If you'd rather chat about it, let me know. I use it (our solution) frequently to try to phish my marketing coworkers with Salesforce password reset notifications. ;)

    Director of Product Marketing at Infosec
    Who we are | What we do 
  • tedjamestedjames Scruffy-looking nerfherdr Member Posts: 1,163 ■■■■■■■■□□
    Thanks for all of the great info! I've made note of it all.

    @Meggo shortly after I created this post, I found this: https://www.infosecinstitute.com/securityiq/phishing

    Looks really good. I'll follow up with an IM.
  • FSF150FSF150 Senior Member Member Posts: 119 ■■■□□□□□□□
    KnowBe4 user here. Have been pretty happy with the interface. They offer both the phishing and the secawareness training modules so good tracking for audits. 

    Not really qualified to speak on the others, but happy with KnowBe4 so far. 
    First we drink the coffee. Then we do the things. :neutral:
  • tedjamestedjames Scruffy-looking nerfherdr Member Posts: 1,163 ■■■■■■■■□□
    FSF150 said:
    KnowBe4 user here. Have been pretty happy with the interface. They offer both the phishing and the secawareness training modules so good tracking for audits. 

    Not really qualified to speak on the others, but happy with KnowBe4 so far. 
    Thanks for the recommendation. KnowBe4 is on my list. Actually, they've been hounding me almost daily for a long time now. Attend a vendor-sponsored webinar and they won't leave you alone. But it is good to know that their services are worthwhile.
  • McxRisleyMcxRisley OSCP, CASP, CySA+, CPT+, Sec+, CEH, Splunk Admin Member Posts: 494 ■■■■■□□□□□
    My company uses KnowBe4. They arent bad if you can stand Kevin Mitnick. Every single video starts with "Hi, I'm Kevin Mitnick. The world's most famous hacker!"
    I'm not allowed to say what my previous occupation was, but let's just say it rhymes with architect.
Sign In or Register to comment.