Old school Security Awareness Training doesn’t hack it anymore. Today, your employees are frequently exposed to sophisticated phishing and ransomware attacks.
We provide baseline testing to assess the Phish-prone percentage of your users through a free simulated phishing attack.
Train Your Users
The world's largest library of security awareness training content; including interactive modules, videos, games, posters and newsletters. Automated training campaigns with scheduled reminder emails.
Phish Your Users
Best-in-class, fully automated simulated phishing attacks, thousands of templates with unlimited usage, and community phishing templates.
See The Results
Enterprise-strength reporting, showing stats and graphs for both training and phishing, ready for management. Show the great ROI!
See how easy it is to train and phish your users!
We offer three Training Access Levels: I, II, and III, giving you access to our content library of 500+ items based on your subscription level. Unlimited access to all phishing features. No artificial license ceilings and 10% overage allowance.
With the powerful new Smart Groups feature, you can use each employees’ behavior and user attributes to tailor phishing campaigns, training assignments, remedial learning, and reporting.
Apart from the existing templates, you can customize scenarios based on personal information, creating targeted spear phishing campaigns. Each Phishing Template can also have its own Custom Landing Page, which allows for point-of-failure education and specifically phish for sensitive information.
Your customized Phishing Templates can also include simulated attachments in the following formats: Word, Excel, PowerPoint and PDF, (also zipped versions of these files).
You'll see reporting for phishing campaigns as well as a general overview of your last 5 campaigns, and you can drill-down into one-time and recurring campaigns for more detail.
KnowBe4 gives you you the world's largest library with 500+ items of security awareness training content; including interactive modules, videos, games, posters and newsletters
We offer three Training Access Levels: I, II, and III, giving you access to our content library of 500+ items based on your subscription level. You will get web-based, on-demand, engaging training that addresses the needs of any organization whether you have 50, 500 or 5,000 users.
Kevin Mitnick Security Awareness Training specializes in making sure employees understand the mechanisms of spam, phishing, spear phishing, malware and social engineering; and are able to apply this knowledge in their day-to-day job.
Trainees get a unique job-aid: Social Engineering Red Flags™ with 22 things to watch out for. The Training Campaigns do the heavy lifting of getting users through their training.
Our 5,- 15-, 25- and 45-minute basic training modules specialize in making sure employees understand the mechanisms of spam, phishing, spear phishing, malware, ransomware and social engineering, and are able to apply this knowledge in their day-to-day job.
You get high quality web-based interactive training combined with common traps, live demonstration videos, short comprehension tests and scenario-based Danger Zone exercises. An advanced, condensed 15-minute version which specifically focuses on APT and phishing and is now available in 26 languages.
You can schedule regular Phishing Security Tests (PST for short) from our large library of more than 2,100 "known-to-work" templates, choose from the community templates section, which were created by admins for admins to share with their peers. You can also create your own custom phishing templates. There are many more features!
NEW Industry Benchmarking feature lets you compare your organization’s Phish-prone percentage™ with other companies in your industry. See where you stack up! Monitor your employee phish-prone percentages over time and watch how performance from your initial baseline phishing test, after 90 days, and 1 year compares. With regular phishing security tests and training campaigns, you’ll see how your Human Firewall improves over time helping to reduce risk and improve your IT security defense. You’ll have real-time stats that helps you keep a pulse on how your security awareness program and employees stack up against other companies in your industry. Great intel to share with your management team!
Our Phishing Reply Tracking allows you to track if a user replies to a simulated phishing email and can capture the information sent in the reply. You can also track links clicked by users as well as test and track if users are opening Office attachments and then enabling macros.
In case an employee falls for one of these simulated phishing attacks, you have several options for correction, including instant remedial online training. You can schedule one-shot, weekly, bi-weekly or monthly simulated phishing attacks and immediately see which employees fall for these social engineering attacks. Here is some visible proof the training works over a 12-month period.
In addition, KnowBe4’s Phish Alert Button reinforces your organization’s security culture, users can report suspicious emails with one click.
Phishing Reply Tracking™ allows you to track if a user replies to a simulated phishing email and can capture the information sent in the reply. This feature works hand-in-hand with the simulated CEO Fraud attacks you can launch to inoculate high-risk employees.
Social Engineering Indicators™ (SEI) patented technology, turns every simulated phishing email into a tool IT can use to instantly train employees. When a user clicks on any of the 2,100+ KnowBe4 simulated phishing emails, they are routed to a landing page that includes a dynamic copy of that phishing email showing all the red flags. You can also customize any simulated phishing email and create your own red flags. Users can then immediately see the potential pitfalls and learn to spot the indicators they missed in the future.
USB Drive Test™ allows you to test your user’s reactions to unknown USBs, on average 45% of users will plug in USBs they find! You can download a special, "beaconized" Microsoft Office file from your KnowBe4 admin console onto any USB drive which you can drop at an on-site high traffic area. If an employee picks up the USB drive, plugs it in their workstation, and opens the file, it will "call home" and report the fail. Should a user also enable the macros in the file, then additional data is also tracked and made available in the admin console.
GEO-location lets you see where your simulated phishing attack failures are on a map, with drilldown capability and CSV-export options.
Vulnerable Browser Plugin Detection automatically detect what vulnerable plugins any clickers on your phishing tests have installed in their browsers and can be viewed within your console.
EZXploit™ has patent-pending functionality that allows you to do an internal, fully automated "human pentest" at a fraction of the cost to do this manually. EZXploit takes your simulated phishing attacks to the next level. You can now find out which of your users can actually be exploited by hackers.
Automate the path your employees take to smarter security decisions. With the powerful new Smart Groups feature, you can use each employees’ behavior and user attributes to tailor phishing campaigns, training assignments, remedial learning and reporting.
You can now create “set-it-and-forget-it” phishing and training campaigns so you can instantly respond to any phishing clicks with remedial training or have new employees automatically notified of onboarding training, and much more. The "Incremental Phishing with Smart Groups" video has been published in the Help Center. Here is the link.
Easy User Management
As the Security Awareness Training project leader, KnowBe4’s Active Directory Integration allows you to easily upload user data and saves you time by eliminating the need to manually manage user changes. Once the ADI is configured, users will be added, changed and archived in sync with changes made within AD automatically. For security reasons, the synch only works one-way. You can also upload users with CSV files.
Security Roles allows you to assign granular access control for users and groups within the KnowBe4 console. Create custom permissions for the exact roles needed by your organization. Easily allow groups like HR teams to access reporting only to review individual user results or employees with creative control to create phishing templates and landing pages.
You and your team have made my life much better in dealing with employee awareness. It is very appreciated and has given us boost up with our regulatory requirements and preventative measures. I love KnowBe4 and if you ever need a reference, feel free to have people contact me.
If you need an advocate on the west coast, just refer people to me…I’m so impressed.
Working with you is a breath of fresh air compared to other vendors who refuse to listen to what I ask and respond in kind.
I have been enjoying your product a lot. I also love the brief updates about news and issues from Stu every so often. It helps to keep me informed and aware of any potential threats.
We have been using KnowBe4 for a few years now and we are very happy with the service. We love the new features that you have added to the phishing campaigns.
Good Morning, Love, love, love it!! Thank you.
We love your products. We are happy with using your service. Thank you.
I am a very happy camper, thanks to your excellent and entertaining Kevin Mitnick Security training program, and to our account Rep. Sean Ness, we are loving your product.
It’s going well. Love the ability to track progress and especially love the “auto-nag” feature so I don’t have to remember to send out reminders periodically.
I couldn’t be any happier. Thank you. I love your service.