1. Knowledge Base
  2. PHISHING SIMULATION

Phishing simulation checklist

Before you start using Wizer phishing simulations please make sure to review the below checklist to ensure a smooth experience.

1. General whitelisting
Depending on your mailing system, please make sure to follow the whitelisting instructions below:

2. If you are a Google Workspace user:
Make sure to create a spam filter according to the following instructions.

3. If you are O365 user:

We also offer an automated way of whitelisting for O365 by running a power shell script as described in the following document: O365 whitelisting script.

3.1 This step should only be used in case the MS Defender Safe Links functionality is used by your organization(as this option comes from the premium MS Defender subscription), please ensure the rule is implemented as described in the following document: Microsoft Defender Safe Links configurations

4. 3rd party email validation services.
In case you have any running on your end, please ensure our items are whitelisted there as well.
You can refer to the below articles as examples, note in case you run into issues with whitelisting there we suggest reaching out to the software vendor directly since this is 3rd party 

 

 

5. Endpoint detection services and antiviruses.

In case there are any EDRs like Carbon Black, SentinelOne or others alongside any of the widely used antiviruses that can scan incoming emails like ESET, TrendMicro etc, make sure our IPs and domains are allowed there as well.

6. Testing the functionality.
If you implemented the above items yet do not get the emails delivered, make sure you review the quarantine or the message trace in the software used on your end to see whether the email was delivered. If not please reach out to us and provide the email of the recipient who did not receive the simulation test.

If you implemented the above items yet the simulation emails land in to the junk/spam mailboxes, please review the email message headers for more information.
Instructions on how to get the headers for Gmail and O365