1
Scope and rules
Goal, group, timing, and what is in-scope and out-of-scope.
Services
Related: Phishing tests and Security awareness training.
Controlled simulations focused on reporting behavior, response time, and follow-up. Not just click rates.
What you get
- Clear scope and rules, agreed upfront
- Safe setup, no credential capture
- Measurement of reporting and follow-up, not only clicks
- Simple report with practical actions
Blind spot: optimizing for a low click rate alone can reduce reporting. Reporting and follow-up is the real win.
Quick start
Mail us, we reply with a short intake checklist and a proposal.
Dutch? Go to /nl/diensten/.
Service options
High level only, no abuse instructions.
Email phishing simulation
Measure clicks, reporting, and time to report, per scenario and target group.
Smishing simulation
Mobile-focused scenarios, measuring escalation and reporting behavior.
Vishing awareness test
Test verification steps and how people handle phone-based requests.
Reporting process test
Where does a report land, who owns follow-up, how fast does the loop close.
Report and improvement plan
Results in plain English, plus concrete improvements for people, process, and settings.
Awareness training, based on results
Training topics based on what actually went wrong in your test results.
How it works
2
Scenario design
Realistic, safe scenarios aligned to your environment.
3
Run and measure
Controlled execution, monitoring, and measurement.
4
Report and actions
Clear results and practical changes you can implement.