Alternatives to ATTACK Simulator

Compare ATTACK Simulator alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to ATTACK Simulator in 2026. Compare features, ratings, user reviews, pricing, and more from ATTACK Simulator competitors and alternatives in order to make an informed decision for your business.

  • 1
    NINJIO

    NINJIO

    NINJIO

    NINJIO lowers human-based cybersecurity risk through engaging training, personalized testing, and insightful reporting. Our multi-pronged approach to training focuses on the latest attack vectors to build employee knowledge and the behavioral science behind human engineering to sharpen users’ intuition. The proprietary NINJIO Risk Algorithm™ identifies users’ social engineering vulnerabilities based on phishing simulation data and informs content delivery to provide a personalized experience that changes individual behavior. With NINJIO you get: - NINJIO AWARE attack vector-based training that engages viewers with Hollywood style, micro learning episodes based on real hacks. - NINJIO PHISH3D simulated phishing identifies the specific social engineering tricks most likely to fool users in your organization. - NINJIO SENSE is our new behavioral science-based training course that shows employees what it “feels like” when hackers are trying to manipulate them.
    Leader badge
    Compare vs. ATTACK Simulator View Software
    Visit Website
  • 2
    Adaptive Security

    Adaptive Security

    Adaptive Security

    Adaptive Security is the security layer for the AI era, protecting organizations and their employees from modern cyberattacks. AI has changed how every company works, and how every company gets attacked. Employees use AI tools IT doesn't know about. Attackers craft deepfakes, vishing calls, and spear phishing emails that get past filters. Adaptive addresses all of it in one unified platform: managing AI tool usage before it becomes a liability, training employees on the threats they'll actually face, simulating AI-powered attacks, and protecting the inbox and browser so threats never reach their intended targets. Because it's one platform, Adaptive develops a complete risk picture and uses it automatically, applying targeted training, attack simulations, and policy controls to lower risk over time. More than 1,000 organizations run Adaptive to manage their human security program, having raised $150M+ from NVIDIA, Andreessen Horowitz, Bain Capital Ventures, and Citi Ventures.
  • 3
    Mimecast Engage
    Even with a robust email security perimeter in place, attackers can try to bypass it and operate inside your email network. When you analyze the anatomy of most successful cyberattacks, nearly all of them have one thing in common. Some user, somewhere, did something that could have been avoided. In fact, research shows that human error is involved in 90%+ of all security breaches. If your employees aren’t ready for a cyberattack, the unfortunate truth is that your organization isn’t either. Your security starts and ends with people. But human risk is still an unsolved problem for security teams of all sizes, with 68% of breaches involving a human element. Transform the way you address human risk with Mimecast Engage, a revolutionized security awareness solution powered by Mimecast’s Human Risk Management Platform. Mimecast Engage leverages risk signals and behavioral insights to deliver the right intervention and training to each employee, at the right time.
  • 4
    Sophos Phish Threat
    Phishing is big business. Attacks have shown record growth in recent years, and a solid security awareness program is an integral part of any defense-in-depth strategy. Sophos Phish Threat educates and tests your end users through automated attack simulations, quality security awareness training, and actionable reporting metrics. Phish Threat provides you with the flexibility and customization that your organization needs to facilitate a positive security awareness culture. End users are the largest, most vulnerable target in most organizations. In real-world attacks, end users are relentlessly bombarded with spear-phishing and socially engineered schemes. Simulate hundreds of realistic and challenging phishing attacks in a just few clicks. At Sophos, our global SophosLabs analysts monitor millions of emails, URLs, files, and other data points each day for the latest threats.
  • 5
    Right-Hand Cybersecurity

    Right-Hand Cybersecurity

    Right-Hand Cybersecurity

    Right-Hand is an AI-powered Human Risk Management platform designed to help organizations reduce cybersecurity risks caused by human behavior by automating and personalizing security awareness programs. It uses a fleet of AI agents to simulate real-world social engineering attacks such as phishing and deepfake vishing, generate training content, and deliver targeted learning experiences tailored to each employee’s behavior and risk profile. It integrates with existing security tools, including SIEM, EDR, DLP, and email security systems, to aggregate alerts and identify risky user actions in real time, enabling organizations to measure and understand human risk across their workforce. It provides automated, gamified, and personalized security awareness training that reinforces safe behaviors through continuous engagement, using micro-learning modules, real-time nudges, and behavior-based interventions delivered through channels like Slack, Teams, and email.
  • 6
    Hut Six Security

    Hut Six Security

    Hut Six Security

    Information security training, phishing simulation and reporting solution that provides a comprehensive view of an organization's security awareness. Hut Six's Security Awareness Training program educates people to identify, avoid and report cyber threats. The human factor is a vital part of preventing financial and reputational damages from successful cyber-attacks or data breaches. Achieve compliance with GDPR, ISO 27001, SOC2 and Cyber Essentials by implementing ongoing cyber security training. Our cyber security course of bite-sized training covers all aspects of end-user security. Engaging and high-quality online courses which change behaviors and build an educational journey across multiple years of content. We empower people to improve cybersecurity in their personal lives.
  • 7
    Defendify

    Defendify

    Defendify

    Founded in 2017, Defendify is pioneering All-In-One Cybersecurity® for organizations with growing security needs, backed by experts offering ongoing guidance and support. Delivering multiple layers of protection, Defendify provides an easy-to-use platform designed to strengthen cybersecurity across people, process, and technology, continuously. Defendify streamlines cybersecurity assessments, testing, policies, training, detection, response, and containment in one consolidated and cost-effective cybersecurity solution. 3 layers, 13 solutions, 1 platform, including: • Managed Detection & Response • Cyber Incident Response Plan • Cybersecurity Threat Alerts • Phishing Simulations • Cybersecurity Awareness Training • Cybersecurity Awareness Videos • Cybersecurity Awareness Posters & Graphics • Technology Acceptable Use Policy • Cybersecurity Risk Assessments • Penetration Testing • Vulnerability Scanning • Compromised Password Scanning • Website Security Scanning
  • 8
    Threatcop

    Threatcop

    Threatcop

    Threatcop is a cyber security simulator and awareness tool that launches dummy cyber attacks on employees followed with awareness modules and gamified assessment. It simulates and imparts customized awareness based on top 6 attack vectors namely Phishing, Ransomware, Vishing, SMiShing, Cyber Scam and Removable Media. It compares the pre and post cybersecurity awareness levels of employees and provides a comprehensive report on individual user awareness as 'Employee Vulnerability Score (EVS)'. The awareness videos, advisories, newsletters and gamified quiz are customized with respect to the EVS score, thus, ensuring cyber resilience. It is a complete suite for your employees' cyber security awareness.
  • 9
    Innvikta

    Innvikta

    Innvikta Cybersecurity Solutions

    Innvikta is proud to introduce InSAT, a cutting-edge Security Awareness Training platform that redefines the way organizations prepare for cyber threats. With InSAT, we offer a comprehensive platform that combines advanced cyber attack simulations with a feature-rich Learning Management System (LMS) featuring an extensive library of engaging training content. Together, these elements create an unparalleled learning experience that empowers your team to become formidable guardians against cyberattacks. At the heart of InSAT lies its revolutionary cyber attack simulation, a powerful tool that enables you to assess and enhance your team's resilience to multiple attack vectors. Gone are the days of one-dimensional training – InSAT challenges your users with realistic scenarios, ensuring they are prepared to face the ever-evolving threat landscape.
  • 10
    DynaRisk Breach Defence
    As your technology footprint evolves, so does your risk profile; make sure you are protected, with DynaRisk's Breach Defence. Alongside our protection capabilities, teach your staff the cyber security basics with our expert training guides and simulated phishing scams so they don’t fall victim to attacks that could expose your business. Our Dark Web Monitor alerts you to leaked data records like credentials, personal information, credit cards and more. We monitor over 350 cyber criminal communities to find data that can be used to break into your accounts and systems. Our Hack Monitor scours the Internet to find indications that cyber criminals are targeting your company or that you’ve been hacked and don’t know it yet. Vulnerability Monitor scans your external infrastructure to look for weaknesses that hackers can exploit. Cyber security doesn't have to be complicated! Protect your business today with Breach Defence.
  • 11
    Microsoft Attack Simulator
    Microsoft's Attack Simulation Training is a phishing risk-reduction tool that automatically deploys security awareness training programs and measures behavioral changes. It assesses risk by measuring users' baseline awareness of phishing attacks, improves user behavior through security awareness training designed to change behavior, and evaluates progress by assessing phishing risk mitigation across social engineering vectors. Key capabilities include intelligent simulation, which accurately detects phishing risk using real emails that attackers might send to employees in your organization, automating simulation creation, payload attachment, user targeting, scheduling, and cleanup. Reporting provides analytics and insights, allowing organizations to find out their training completion and simulation status, and track progress against a baseline-predicted compromise rate. Security awareness training offers a vast library of courses and information available in over 30 languages.
  • 12
    Phriendly Phishing

    Phriendly Phishing

    Phriendly Phishing

    Phriendly Phishing is a cyber security awareness training and phishing simulation solution that educates and empowers your organization and employees to help mitigate reputational and financial loss from cyber attacks. We train not trick through empathetic learning that is customized to each learner's journey. The platform is fully automated, digitally delivered and is localized with relevant and engaging content.
  • 13
    Phishr

    Phishr

    Phishr

    Phishr is a comprehensive phishing simulation and security awareness training platform designed to help organizations educate employees, identify vulnerabilities, and build a strong defense against phishing attacks. By simulating realistic phishing scenarios, Phishr allows businesses to test how employees respond to phishing emails and social engineering attempts, providing valuable insights into organizational risk levels. It offers a wide range of customizable phishing templates, enabling security teams to replicate common and emerging phishing tactics tailored to their industry. When employees fall for simulated attacks, automated training modules and real-time feedback are deployed to educate them on recognizing and avoiding future threats. Phishr also includes detailed analytics and reporting tools, allowing organizations to track progress over time, identify high-risk individuals or departments, and demonstrate compliance with cybersecurity training requirements.
    Starting Price: $200 per month
  • 14
    Aspire Security Awareness Training

    Aspire Security Awareness Training

    Aspire Tech Services & Solutions

    Aspire Security Awareness Training (A-SAT) is an AI-powered platform that enhances cybersecurity awareness across organizations. It offers interactive, gamified training modules covering key topics such as phishing, social engineering, and other cyber threats. A-SAT features realistic phishing simulations that help employees identify and respond to real-world cyber attacks, reducing human error the leading cause of breaches. The platform includes real-time analytics and reporting, allowing organizations to track training progress, measure effectiveness, and address any knowledge gaps. A-SAT is designed to support compliance with key regulations like GDPR, HIPAA, and NIST. Scalable and cloud-based, it integrates seamlessly into existing security frameworks and is accessible across devices, making it ideal for businesses of all sizes, including remote teams. With A-SAT, organizations can foster a security culture, strengthen defenses, and significantly reduce cybersecurity risks.
    Starting Price: $2.5/month/user
  • 15
    VIPRE Security Awareness

    VIPRE Security Awareness

    Inspired eLearning powered by VIPRE

    Inspired eLearning, powered by VIPRE, delivers top-tier security awareness training to help organizations reduce human-related security incidents. By combining enterprise-grade software with simplified, targeted solutions, this training empowers employees to recognize and respond to today’s cyber-attacks. With over 15 years of enterprise cybersecurity expertise, Inspired eLearning offers three off-the-shelf packages, ranging from Security First: Select to Security First: Elite, designed to fit businesses of any size or experience level. Each package includes training, micro-learning modules, assessments, and phishing simulations through our PhishProof solution, all aimed at creating a Security First organization. Powered by automation, these solutions provide an effective, measurable approach to reducing security risks and building a strong security culture across your workforce.
    Starting Price: $16.75/user/year
  • 16
    Mandiant Security Validation
    The general assumption is that breach and attack simulation provides a comprehensive view of an organization’s cyber security posture. It does not. Many traditional BAS vendors have begun to label themselves as security validation. Use the latest global threat and adversary intelligence to focus resources on specific and relevant threats facing your organization. Emulate authentic, active attack binaries and destructive attacks, including malware and ransomware. Conduct real attacks across the full attack lifecycle with deep and comprehensive integration with your entire security infrastructure. Cyber security effectiveness needs to be objectively measured on an ongoing basis, not only to ensure the systems and tools in place are reducing an organization’s exposure to risk, but also to support CISOs who are being asked to measurably improve and demonstrate the value of their security investments to key stakeholders.
  • 17
    Picus

    Picus

    Picus Security

    Picus Security, the leading security validation company, gives organizations a clear picture of their cyber risk based on business context. Picus transforms security practices by correlating, prioritizing, and validating exposures across siloed findings so teams can focus on critical gaps and high-impact fixes. With Picus, security teams can quickly take action with one-click mitigations to stop more threats with less effort. The Picus Security Validation Platform easily reaches across on-prem environments, hybrid clouds and endpoints coupled with Numi AI to provide exposure validation. The pioneer of Breach and Attack Simulation, Picus delivers award-winning threat-centric technology that allows teams to pinpoint fixes worth pursuing, offering a 95% recommendation in Gartner Peer Review.
  • 18
    Elasticito

    Elasticito

    Elasticito Limited

    We alert organisations to Risks & Threats. Our approach integrates state-of-the-art automation with the seasoned expertise of our Cyber Specialists, offering you exceptional visibility & control over the evolving cyber threats your business faces. We deliver the intelligence needed to proactively defend against attacks & understand third-party exposures. Through ongoing analysis of your security infrastructure, we identify areas of strength, uncover weaknesses & prioritise critical fixes based on potential business damage. Achieve a clear understanding of your security posture, benchmark against competitors & ensure regulatory compliance. Our Crown Jewel Protection, Detection & Response Solutions, aligned with the MITRE ATT&CK Framework, secure your critical assets at every stage.
  • 19
    Curricula

    Curricula

    Curricula

    Curricula's fun eLearning platform uses behavioral science-based techniques, such as storytelling, to fundamentally transform your employee security awareness training program. Let’s face it, employees tune out of boring ‘Death by PowerPoint’ information security awareness training and start to resent security instead of embracing it. Our behavioral science approach trains employees using short, memorable stories based on real-world cyber attacks. Our security awareness training content library is fun, memorable, and will have your employees begging you to release the next episode! Select content from a variety of fresh new cyber security training stories, posters, security awareness downloads, phishing simulations, and more. Create your own custom eLearning training using the same tools our team does! No Designer, no problem. Now anyone can build their own fun training stories using our characters and launch them right inside our integrated learning management system.
  • 20
    NetSPI Breach and Attack Simulation
    It takes one click to give an adversary everything they need to access your global environment. Our proven technology and expert teams will evaluate your detective controls to prepare you for real-world threats throughout the cyber kill chain. Only 20 percent of common attack behaviors are caught by EDR, SIEM, and MSSP out-of-the-box solutions. Contrary to what many BAS vendors and technology providers claim, 100% detection does not exist. So, how can we improve our security controls to better detect attacks across the kill chain? With breach and cyber attack simulation. We deliver a centralized detective control platform that gives organizations the ability to create and execute customized procedures utilizing purpose-built technology and professional human pentesters. Simulate real-world attack behaviors, not just IOC’s, and put your detective controls to the test in a way no other organization can.
  • 21
    OpenBAS

    OpenBAS

    Filigran

    OpenBAS is an open source breach and attack simulation (BAS) platform developed by Filigran, designed to help organizations plan, schedule, and conduct cyber adversary simulation campaigns and tests. It enables the creation of dynamic attack scenarios, ensuring accurate, timely, and effective responses during real-world incidents. With over 800 GitHub stars and more than 10 injectors, OpenBAS allows for customizable simulations tailored to various industry needs, evaluating both technical and human aspects of security posture. It integrates threat intelligence from OpenCTI, enabling dynamic customization based on the latest cyber threat insights, used techniques, and relevant adversary behaviors. OpenBAS facilitates team and technology evaluations regarding actual cyber threats and collaborative feedback on scenarios within the platform, enabling detailed analysis for a comprehensive review process.
  • 22
    KnowBe4

    KnowBe4

    KnowBe4

    KnowBe4's Enterprise Awareness Training Program provides you with a comprehensive new-school approach that integrates baseline testing using mock attacks, engaging interactive web-based training, and continuous assessment through simulated phishing, vishing and smishing attacks to build a more resilient and secure organization. Your employees are frequently exposed to sophisticated social engineering attacks. It is time for a comprehensive approach to effectively manage this problem, managed by people with a technical background. We provide baseline testing to assess the Phish-prone percentage of your users through a simulated phishing, vishing or smishing attack. Test our platform yourself for 30 days. The world's largest library of security awareness training content; including interactive modules, videos, games, posters and newsletters. Automated training campaigns with scheduled reminder emails.
    Starting Price: $18 per seat per year
  • 23
    MetaCompliance Security Awareness Training
    Easily automate Security Awareness Training, phishing and policies in minutes. As cybercriminals become increasingly sophisticated, cyber attacks are no longer a matter of if, but when. The challenge is that planning an effective security awareness campaign takes time and resource. Many resource-constrained organizations often struggle to provide even basic Security Awareness Training for their workforce, let alone develop a security awareness program that drives behavior change. Automated Security Awareness Training provides an engaging learning experience for end users, all year round, to ensure cyber security threats stay top of mind. MetaCompliance’s automated security awareness solution enables organizations to schedule their Security Awareness Training for the entire year and mitigate the risk of human-born error. Using a “set it and forget it” approach, automation of security training allows CISOs to save time and resources.
  • 24
    Nemesis

    Nemesis

    Persistent Security

    Nemesis by Persistent Security Industries is an advanced Breach and Attack Simulation (BAS) platform that allows organizations to test their defenses against real-world cyber threats in a safe, controlled environment. It provides continuous validation of security controls by simulating attacks based on the MITRE ATT&CK framework, identifying gaps that traditional vulnerability scans or penetration tests often miss. With automated scheduling, detailed reporting, and a comprehensive threat library, Nemesis empowers security teams to uncover blind spots and streamline compliance efforts. The platform integrates seamlessly with existing security stacks, making it a practical addition to any cybersecurity program. Customers report reduced ransomware costs, improved incident response readiness, and significant time savings in generating board-level reports.
  • 25
    ThreatAdvice Cybersecurity Education
    ThreatAdvice Educate - Looking for an efficient and effective cybersecurity online training platform for your employees? ThreatAdvice Educate uses video-based micro-learning courses to arm your employees with the cybersecurity knowledge they need to protect your organization. Our comprehensive employee education platform includes phishing simulations, quizzes, gamification, policies and procedures, audit reporting, external scans and more. Did you know that over 90% of all enterprise cyber breaches occur because of an unsuspecting employee not being prepared in the basic steps of cybersecurity? Employees may be the biggest threat to your cybersecurity, but they can also be your most effective means of thwarting an attack. ThreatAdvice Educate provides cyber security training for employees that brings the necessary cybersecurity knowledge and skills to help you avoid a cyber-attack and protect valuable company data, and also provides regular phishing tests.
  • 26
    Barracuda PhishLine
    Barracuda Phishline is an email security awareness and phishing simulation solution designed to protect your organization against targeted phishing attacks. PhishLine trains employees to understand the latest social engineering phishing techniques, recognize subtle phishing clues, and prevent email fraud, data loss, and brand damage. PhishLine transforms employees from a potential email security risk to a powerful line of defense against damaging phishing attacks. Guard against a range of threats with patented, highly-variable attack simulations for Phishing (Email), Smishing (SMS), Vishing (Voice) and Found Physical Media (USB/SD Card). Train users with comprehensive, SCORM-compliant courseware. Choose from hundreds of email templates, landing pages and domains. Automatically direct training and testing with the built-in workflow engine. Make it easy for users to instantly report suspicious emails with the Phish Reporting Button.
  • 27
    emPower

    emPower

    emPower Solutions Inc.

    emPower Solutions works with organizations to meet their compliance, trainings needs and help prepare employees against social engineering. emPower has 100s of customers in several industries - financial, healthcare, utilities, services and higher-ed. emPower's platform provides learning management for your internal trainings, provides a course catalog for security trainings, HIPAA, OSHA etc. We also help manage internal policies. The platform provides simulated phishing to prepare employees against attack and train them on relevant security skills. Safety and compliance solutions exclusively for higher education. Cyber attackers are getting smarter, your team can out-smart them. Information security awareness training. We are experts in HIPAA and we can make HIPAA training and compliance easy and cost-effective. Everything you need to emPower your eLearning. Review performance, track progress and gain insight into training impact with reports, to-do lists and dashboards.
  • 28
    PhishByte

    PhishByte

    PhishByte

    PhishByte is an Australian phishing simulation and cyber security awareness training platform built for small and medium-sized businesses. Designed to reduce human cyber risk, PhishByte delivers realistic phishing simulations, short interactive training modules, and real-time Human Risk Scores that track team progress over time. Unlike one-off compliance tick boxes, PhishByte builds lasting behavioural change through continuous simulation and just-in-time learning. When an employee clicks a phishing link, they receive an immediate training intervention — making the lesson relevant and memorable. PhishByte aligns with the Australian Cyber Security Centre's Essential Eight framework and helps organisations meet Privacy Act obligations. It requires no dedicated IT team and is simple to set up and manage. Plans start free for up to 10 users, with Professional and Enterprise tiers available for growing teams.
    Starting Price: $14.40 AUD/user/year
  • 29
    Security Mentor

    Security Mentor

    Security Mentor

    Your security awareness training program is the most important tool in your arsenal for preventing cyber security incidents. Unfortunately, all too often, security awareness training isn’t taken or understood. With boring videos, low-quality cartoons and click-through drudgery, even if training is taken, it's quickly forgotten. So how can you create security-aware employees and make your security-awareness program a success? Rely on Security Mentor, we do things differently, we put the learner first. Drive real behavior and culture change using our powerful Brief, Frequent, Focused learning system combined with our compelling, relevant, and impactful security awareness training. Each security awareness training lesson includes serious games and innovative interactions that equip your employees with the knowledge and cyber skills they need to protect themselves and your organization from cyber threats, phishing attacks and ransomware, as well as their own cyber mistakes.
  • 30
    Keysight Threat Simulator

    Keysight Threat Simulator

    Keysight Technologies

    Threat Simulator never interacts with your production servers or endpoints. Instead, it uses isolated software endpoints across your network to safely exercise your live security defenses. Dark Cloud, our malware and attack simulator, connects to these endpoints to test your security infrastructure by emulating the entire cyber kill chain — phishing, user behavior, malware transmission, infection, command and control, and lateral movement. The world leader in application and security testing, our Application and Threat Intelligence (ATI) Research Center keeps Threat Simulator updated with the latest threats. Our database contains more than 50 million records, and millions of new threats are analyzed and cataloged each month. With continuous updates from our feed, you'll always be able to emulate the most relevant and active cyber security threats and attacks. But curtailing threats also means knowing your enemy.
  • 31
    WhiteHaX

    WhiteHaX

    WhiteHaX

    WhiteHaX cyber readiness verification is trusted by some of the largest cyber insurance carriers with tens of thousands of licenses deployed, WhiteHaX is a cloud-hosted, automated, cyber-readiness verification (pen-testing) platform. The WhiteHaX cyber-insurance version provides a no-install, no-impact, quick (under 15-min) verification of a business' cyber-readiness by simulating several threat scenarios against the business' deployed security infrastructure, including network perimeter defenses and endpoint security & controls. A few examples of these simulated threat scenarios include firewall attacks, user-attacks from internet such as drive-by downloads, email phishing/spoofing/spamming, ransomware, data-exfiltration attempts and others. WhiteHaX Hunter is a purpose-built platform, specifically designed to remotely hunt for server-side indicators of compromises (SIoCs) on applications and other servers deployed on-premise or in the cloud.
  • 32
    HookPhish

    HookPhish

    HookPhish

    HookPhish is a cutting-edge cybersecurity company specializing in combating evolving phishing attacks and social engineering threats. Our platform offers innovative solutions to bolster defenses, raise employee awareness, and secure sensitive data. Platform Overview: 1. Phishing Simulation: Immerse teams in lifelike scenarios to adeptly identify and counter phishing threats. Interactive simulations enhance resilience against attacks. 2. Awareness Training: Equip your workforce with insights into social engineering tactics. Foster a security-conscious culture to thwart potential threats. 3. Data Leak Protection: Monitor, track, and safeguard sensitive information from unauthorized access. Ensure stringent control over proprietary data. 4. Phishing Detect: Stay ahead with advanced monitoring. Swiftly identify and prevent phishing, typosquatting, and brand impersonation attacks.
  • 33
    Cymulate

    Cymulate

    Cymulate

    Continuous Security Validation Across the Full Kill Chain. Cymulate’s breach and attack simulation platform is used by security teams to determine their security gaps within seconds and remediate them. Cymulate’s full kill chain attack vectors simulations analyze all areas of your organization including for example web apps, email, phishing, and endpoints, so no threats slip through the cracks.
  • 34
    LUCY Security Awareness Training
    Train. phish. assess. engage. alarm. Lucy Security from Switzerland allows organizations to measure and improve the security awareness of employees and test their IT defenses. Turn employees into a human firewall with simulated attacks and our E-Learning platform with hundreds of preconfigured videos, training, quiz ready for usage. The most powerful IT Security Awareness Solution in the market. Fixed Prices | On-Premise or SaaS | Phish-Button | Threat Analytics | Over 10.000 installations and more than 25.000.000 trained users | 2020 Excellence Award for Best Anti Phishing.
  • 35
    D.STORM

    D.STORM

    D.STORM

    2021 was a year that displayed a dramatic increase in the volume of offensive cyber activities worldwide. Moreover, HUB Security has identified that the number of DDoS-oriented attacks is growing and is becoming the preferred method of attack, as companies become much more reliant on their digital platforms to conduct business. This means that, if successful, a DDoS attack has a direct impact on the company’s operations and financial performance. Current data shows most DDoS attacks are increasing in power and using multi-vector attacks more frequently. The average attack now lasts 24% longer, and the maximum attack length has jumped by over 270%. The number of DDoS attacks over 100 GB/s in volume increased substantially in the past year. The D.STORM SaaS DDoS simulation platform fits most types of organizations that consume or deliver DDoS Simulation services. D.STORM simulates real DDoS attacks using a clear and simple web interface, in a controlled manner.
  • 36
    RansomLeak

    RansomLeak

    RansomLeak

    RansomLeak is a security awareness training platform that uses interactive 3D simulations instead of videos and slides. Employees face realistic phishing emails, social engineering phone calls, data handling decisions, physical security, and other scenarios modeled on documented attack patterns. Each simulation branches based on the employee's choices and shows them what would have happened in a real attack. The training methodology draws from cognitive science research on experiential learning and active recall. Gamification with points, badges, and leaderboards drives completion rates across large workforces. Deploys as SCORM 1.2/2004 packages for integration with Cornerstone, Workday, SAP SuccessFactors, Docebo, 360Learning, Moodle, Canvas, Blackboard, and other LMS platforms, or as a standalone cloud LMS with user management, real-time analytics, campaign scheduling, SSO/MFA, and whitelabeling. Built by the team behind Kontra Application Security Training.
    Starting Price: $8/year/user
  • 37
    Cyttack.ai

    Cyttack.ai

    MST Networks

    Cyttack.ai is an AI-driven cybersecurity platform designed to help organizations test and strengthen their defenses through realistic DDoS attack simulations. The platform enables security teams to safely emulate volumetric, protocol, and application-layer attacks in a controlled environment without impacting live operations. Cyttack.ai provides real-time monitoring, detailed analytics, and actionable reports that highlight vulnerabilities, infrastructure limits, and mitigation gaps. With customizable attack scenarios, businesses can validate network resilience, evaluate security controls, and improve incident readiness. The cloud-based solution requires no complex setup and supports continuous security assessment for enterprises, startups, and MSSPs. Cyttack.ai empowers organizations to proactively identify risks, optimize defense strategies, and ensure business continuity against evolving cyber threats.
  • 38
    SightGain

    SightGain

    SightGain

    Cybersecurity leaders: Stop worrying and know that you are protected. SightGain is the only integrated risk management solution focused on cybersecurity readiness. SightGain tests and measures readiness using real-world attack simulations in your live environment. SightGain first quantifies your organization’s risk exposure including potential financial loss, downtime, or data loss. Then it assesses your readiness posture identifying the specific strengths and weaknesses in your production environment. Finally, it enables you to prioritize investments that will optimize your security readiness across people, processes, and technology. SightGain is the first automated platform to provide verifiable insights into your security people, process and Technology. We go beyond what Breach and Attack Simulation platforms do to now include people and process. With SightGain, you can continuously test, measure, and improve your security posture against the latest attacks.
  • 39
    Global Learning Systems

    Global Learning Systems

    Global Learning Systems

    Security threats have multiplied dramatically and hackers have become even more sophisticated. Organizations are under attack from all directions as cyber crime has become big business. While many organizations invest in protection technologies, technology can’t be successful without cybersecurity awareness training for employees. Online security awareness training from GLS drives positive employee behavior changes. This helps protect your organization. Your workforce is your first line of defense against the bad guys. Therefore they must take personal responsibility so as to safeguard the organization and its information assets. GLS provides engaging and varied training program materials that reach learners in different ways.
  • 40
    Nimblr Security Awareness
    Nimblr’s interactive micro training covers everything from ransomware to safe browsing and is automatically adapted to your business environment. The training modules are based on the micro-learning concept and are always concise and relevant. Nimblr’s simulated attacks are based on thousands of current threats which are analyzed, processed, and disarmed by Nimblr’s experts. To make the simulations even more realistic, they are automatically adapted using customer-specific data such as the name of the business’ CFO or information about the customer’s website. Nimblr Security Awareness is continuously updated with new zero-day classes and associated simulations based on current attacks and threats. The most urgent gaps in your knowledge are automatically prioritised so we always provide the right information at the right time.
  • 41
    Infosec IQ

    Infosec IQ

    Infosec

    Prepare every employee with industry-leading security awareness training so they’re ready when a real attack hits. Infosec IQ provides personalized security awareness and anti-phishing training to help you engage every employee, keep education relevant and deliver training automatically to those who need it most. Activate pre-built program plans in a variety of themes and styles to jumpstart awareness and deliver comprehensive training mapped to NIST recommendations. Choose from gamified education to traditional computer-based training to fit your organization’s existing culture or build a culture of security from the ground up. Programs include training modules, posters, infographics, email templates, presentations and more to help you layer your communication and deliver consistent training for the entire year. Build simulated phishing campaigns from our library of over 1,000 templates to teach employees how to avoid the most dangerous phishing threats they face.
  • 42
    Tartan App

    Tartan App

    Tartan App

    Tartan App is an easy-to-use, AI-driven cybersecurity awareness training and phishing simulation solution designed specifically for K-12 schools. We understand IT Directors face tight budgets and limited time. Tartan App offers quick, hassle-free setup, automates phishing simulations tailored to your school. We provide 10 second training tips personalized for every employee's skill level. Our simple flat pricing covers your entire district, eliminating complicated licensing. With detailed reporting, Tartan App helps create a positive security culture, reduces cyber risks, ensures compliance, and empowers you to protect your school community.
  • 43
    AwareGO

    AwareGO

    AwareGO

    The cyber security awareness solution that employees love. Build a strong security culture and empower your employees to become the first line of defense. Security awareness should not make people doze off. It should be fun, engaging and highly relatable. We’ve built a complete solution that will help you efficiently reduce the risk of cyber security breaches. Based on the principles of microlearning, employees gain skills to defend from threats. We’ll make sure you’re up-to-date with the latest cyber security threats. A unique approach, crafted by security experts in collaboration with educators and advertisers. Some training solutions feel complex and outdated. Not AwareGO’s brand new LMS. 70+ microlearning videos that are relatable and retainable — with a dash of humor. Crafted in a combined effort by filmmakers and experts in behavior and cybersecurity. Deliver through our cloud platform or integrate into your existing, familiar environment.
    Starting Price: $1 per user per month
  • 44
    CybeReady

    CybeReady

    CybeReady Learning Solutions

    Deploy 8x more phishing simulations (compared with industry average) and ongoing cybersecurity awareness bites without any IT effort. Training sessions are automatically distributed and personalized per employees’ role, location, and performance to achieve 100% continuous workforce training and increased engagement. CybeReady’s real-time data platform enables performance monitoring and improvement tracking of your entire organization with powerful dashboards and reports. Our end-to-end corporate cyber security training platform is driven by data science and is proven to change employee behavior, decrease employee high-risk group by 82%, and increase employee resilience score by 5x, within 12 months of training.
  • 45
    Keepnet Labs

    Keepnet Labs

    Keepnet Labs

    Keepnet’s extended human risk management platform empowers organizations to build a security culture with AI-driven phishing simulations, adaptive training, and automated phishing response, helping you eliminate employee-driven threats, insider risks, and social engineering across your organization and beyond. Keepnet continuously assesses human behaviors through AI-driven phishing simulations across email, SMS, voice, QR codes, MFA, and callback phishing to reduce human-driven cyber risks. Keepnet's adaptive training paths are tailored to individual risk levels, roles, and cognitive behaviors, ensuring that secure behaviors are embedded to continuously reduce human cyber risk. Keepnet empowers employees to report threats instantly. Using AI-driven analysis and automated phishing responses, security admins respond 168x faster. Detects employees who frequently click phishing links, mishandle data, or ignore security policies.
  • 46
    Cyberstanc Swatbox
    Traditional malware sandboxing and simulation solutions may fall short of detecting emerging threats because they often rely on static analysis and pre-defined rules to detect malware. SWATBOX is an advanced malware simulation and sandboxing platform that utilizes simulated intelligence technology to detect and respond to emerging threats in real-time. It is designed to emulate a wide range of realistic attack scenarios, allowing organizations to assess the effectiveness of their existing security solutions and identify any potential vulnerabilities. SWATBOX utilizes a combination of dynamic analysis, behavioral analysis, and machine learning to detect and analyze malware samples in a controlled environment. It uses real-life malware from the wild, which involves creating a sandboxed environment that simulates a real-world target and seeding it with decoy data, to lure attackers into a controlled environment where they can be monitored and their behavior studied.
  • 47
    Core CSP

    Core CSP

    Core Security (Fortra)

    Core CSP is a purpose-built security system that is designed to monitor Internet Service Provider (ISP) and telecommunications subscribers for cyberthreats. This lightweight and scalable service provider solution passively monitors extremely large networks and identifies malicious activity on a subscriber network originating from PC, tablet, and mobile devices. ISPs and telecommunications companies must increasingly fend off cyber threats that hijack bandwidth capabilities. These attacks put subscribers at risk of having credentials stolen, falling victim to fraudulent transactions, or having devices commandeered and used for cryptomining, botnets, or other persistent attacks. DDoS attacks, often committed by botnets, are particularly problematic because they consume bandwidth with floods of requests, disrupting normal traffic or crashing the infrastructure entirely. Threat actors use networks to access any number of unsuspecting targets.
  • 48
    MetaPhish

    MetaPhish

    MetaCompliance

    MetaPhish is a phishing simulation software that allows the administrator to orchestrate phishing simulations and ransomware attacks to directly target their staff and management. Ultimately, this will keep staff safe from phishing scams through automated training that increases their vigilance and identifies the need for additional cyber awareness training. Choose from an extensive range of regularly updated phishing templates. Templates are based on current phishing threats which imitate reputable websites and brands. The templates can be matched with relevant domain names that improve the ease of use within your organization’s network. The templates are all fully customizable and can be adapted to suit specific business sectors. Phishing emails can be created from the ground up using our in-house design team and the extensive range of templates are available in 12 different languages.
  • 49
    Kroll FAST Attack Simulation
    Kroll’s FAST Attack Simulations combine our unrivaled incident forensics experience with leading security frameworks to bring customized simulations to your own environment. Kroll leverages decades of incident response and proactive testing expertise to customize a fast attack simulation to meet the needs and threats of your organization. With deep knowledge of industry, market and geographical factors that influence an organization’s threat landscape, we craft a series of attack simulations to prepare your systems and teams for likely threats. Combined with any specific requirements your organization may have, Kroll will layer industry standards (MITRE ATT&CK) and years of experience to help test your ability to detect and respond to indicators throughout the kill chain. Once designed, simulated attacks can and should be used consistently to test and retest configuration changes, benchmark response preparedness and gauge adherence to internal security standards.
  • 50
    Kaspersky Security Awareness
    Kaspersky Security Awareness is a comprehensive training program designed to equip employees with essential cybersecurity skills to protect organizations from cyber threats. The program offers flexible training solutions tailored to various organizational needs. The training encompasses various components to ensure effective learning, such as motivation, engagement, assessments, and reinforcement. Interactive elements like the Kaspersky Interactive Protection Simulation (KIPS) game challenge decision-makers perceptions of cybersecurity and enhance cooperation between business units. The Gamified Assessment Tool quickly measures employees' cybersecurity skills, while the Automated Security Awareness Platform delivers practical and engaging lessons through automated training management. For decision-makers, the online training provides insights into the cybersecurity landscape and its connection to business efficiency.