I assess hundreds of
businessCommercial enterprises, MSPs, Red/ Blue teams, SOCs, use my capabilities daily to test and assess email security controls for; security, compliance, and change control.
Cybersecurity frameworks like NIST, ISO, MITRE, etc. say to use my services to implement and test security controls as part of a continous assessment/improvement model. I am the only tool able to test the basic 10 email fraud controls to stop todays email-spread ransomware, bots, drive-by's, and worms.
es every month to validate email security protections against
cyber-threatsPhishing is today's biggest problem in cybersecurity allowing threats to spread and data-loss to business and civil infrastructure.
Email users are tricked by emails specifically crafted to look like familar email systems and contacts. Popular phishing kits find new users or busy work environments are easy targets.
This combined with complex infrastructure: shared cloud environments, cloud email plugins, email security updates, changing email infrastructure, and changes to DNS often cause misconfigurations that allow email-spread threats to enter businesses. For example, I have seen Gsuite and M365 shared security postures change week-to-week. Insuring these email defenses work is mission critical!
Don't worry, I'm built to help!
This assessment will grade the ability to defend against these simulated phishing attacks:
Look-a-likeLook-a-like Attack: These are emails coming from addresses that look like valid email domains but are non-existing domains or use invalid characters
BECBEC: These are emails coming from addresses that look like valid email addresses from within your company.
fake insider attack
Fake-SubdomainFake-Subdomain Attack: These emails appear to come from a subdmain of a valid email domain.
DomainDomain Attack: These are emails that impersonate a valid email domain
SubdomainDomain Attack: These are emails that impersonate a valid email subdomain
Enter an email address you have access to above then click test to
2 tests per domain address daily (limit 4 total each domain monthly)
6 tests per source IP
assessmentI test your email security controls by sending you 1 notification email and 9 harmless test emails that your email system should reject completely.
If you get any of the test emails then you know you have an issue.
When you buy an access license, it unlocks the ability to see the detailed results and tips in this test; these help you understand the severity of any email security holes we find and provide guidance to correct the issue. You also get unlimited testing and access to the advanced tools.
and grade fraud protections
I will only send you email as part of a test.
I do not share your email with anyone.