Generic phishing tests train nobody.
Phishforge trains everyone.
Continuously.
Phishforge connects to your HRIS, builds a profile for every employee, and runs AI-generated phishing simulations continuously — matched to the tools each person actually uses. It gets harder as your team gets better.
Workforce Risk Score
↓ 64% over 90 days
Live lure generation
Security alert: new sign-in from unknown device
Action required: invoice #INV-2847 awaiting approval
Escalation: ticket #98231 — SLA breach in 12 minutes
Payroll update: bank details verification required
Your developers get GitHub lures.
Not password reset emails.
Generic tests are ignored. Phishforge generates lures that look exactly like the tools your employees use every day.
Generic simulations
Same email for everyone
IT Department <noreply@company.com>
Your password expires in 24 hours
Please click here to reset your password before it expires.
Security Team <security@company.com>
Unusual login activity detected
We detected a login from an unrecognised device. Verify now.
HR Department <hr@company.com>
Update your emergency contact details
Please log in to the employee portal to update your records.
Result: Employees recognise the pattern after the first test. Click rates drop temporarily, then plateau. No lasting behaviour change.
Phishforge — profile-aware
Matched to each employee's tools
GitHub Security <security@github.com>
Security alert: new sign-in from Berlin, DE
Someone signed in to your account from a device we don't recognise.
Sage Accounting <no-reply@sage.com>
Invoice #INV-2847 requires your approval
A supplier invoice of £14,320 is awaiting your authorisation.
Zendesk Alerts <alerts@zendesk.com>
SLA breach warning — ticket #98231
This ticket will breach its SLA in 12 minutes. Reassign immediately.
Result: Employees can't predict the lure type. Click rates continue falling. Repeat clickers are automatically identified and targeted more frequently.
Set it once.
It runs itself.
Three steps from signup to a continuously running security awareness programme. No ongoing management required.
Connect your HRIS or upload a CSV
Link BambooHR, Personio, or HiBob in two clicks. Or drop a CSV with names, roles, and departments. Phishforge builds employee profiles automatically — no manual configuration.
Supported: BambooHR · Personio · HiBob · CSV upload
AI builds a lure profile per employee
Based on each person's role and department, Phishforge infers the tools they use and generates a personalised lure library. A developer's profile looks nothing like a finance manager's.
Profiles update automatically as roles change
Campaigns run continuously, automatically
Set a cadence and walk away. Phishforge sends lures on a rolling schedule — not a one-off exercise. Difficulty adapts per employee based on their behaviour over time.
No manual campaign management required
Phishforge
The platform learns who your highest-risk people are.
Automatically.
Over time, Phishforge builds a human risk profile per employee and per department. Repeat clickers get harder lures. Fast reporters get more sophisticated tests. You always know where to focus.
77%
Avg click rate reduction
over 90 days
3.2×
High-risk employees found
faster than annual tests
<1hr
Time to first campaign
from signup to live
100%
Lures generated daily
AI-generated, never templated
Phishforge — Risk Dashboard
Department risk scores
Highest-risk employees
Liam O'Brien
Support
Marcus Tanner
Engineering
Priya Sharma
Finance
Sophie Adeyemi
HR
James Whitfield
Sales
Trusted by security-conscious teams
We ran a generic phishing test last year — 40% click rate, everyone complained, nothing changed. Three months with Phishforge and our click rate is under 8%. The role-matched lures are what make it work.
Rachel Okonkwo
Head of IT, Meridian Financial Services
Setup took about 45 minutes including the BambooHR integration. We were sending real campaigns the same day. The adaptive difficulty means I don't have to think about it — it just keeps running.
Tom Kessler
CTO, Stackform
The post-click training is the bit nobody else does well. Our developers actually read it because it's specific to the lure they fell for — not some generic security awareness PDF.
Amara Diallo
VP Engineering, Loopbase
Per seat.
No enterprise contracts.
Start with a free 14-day trial. No credit card required. Cancel any time.
Tier 01
Starter
For small teams getting serious about phishing awareness.
Up to 50 seats
Tier 02
Growth
For growing teams that need deeper visibility and control.
51–500 seats
Tier 03
Practice
White-label Phishforge under your consultancy brand. For Netru partners.
Unlimited seats
All plans include a 14-day free trial. No credit card required. Prices shown in GBP. USD pricing also available.
Start protecting your team today
14-day free trial. No credit card. Connect your HRIS and be live in under an hour.
Netru DevSecOps
Running a security consultancy?
Phishforge is available white-label for DevSecOps consultancies. Add it to your practice under your own brand. Netru-backed support included.