Using simulations and payloads
The key parts of any simulation training involve how to configure and launch a simulation, as well as the payload used in it. A security team will typically have a training schedule that has been approved across an organization and will ensure a training cadence that does not impact security operations. This training should also include any extra basic training that users might need to take, as well as additional training if they fail an attack simulation. For extra impact, many organizations also include prizes for end users who react well to the simulations.
Understanding payloads
A payload refers to either a link or an attachment in a message used in an attack simulation. Out of the box, a comprehensive built-in catalog of payloads is available, which represents various social engineering tactics. For those looking to tailor this experience more closely to their organization’s needs, there’s an option to craft custom payloads. To...
