Skip to main content
All CollectionsPhishing ReadinessSchedule your first phishing campaign
How do I schedule a phishing campaign?
How do I schedule a phishing campaign?
Soumalya Mitra avatar
Written by Soumalya Mitra
Updated over a week ago

You can customize the basic details of the campaign, target audience, launch schedule, define their phishing email template, landing page, and weaponized attachments.

To create a new Phishing Campaign, navigate to Risk Assessment > Campaigns > Create New > Phishing. A pop-up appears with the details about what a phishing campaign is. Click Create Campaign.

The process is further divided into 6 steps which are as follows:

Step 1: Select Template

Step 2: Campaign Attributes

Step 3: Target Audience

Step 4: Schedule

Step 1: Select Template

You can select up to 20 email templates for your campaign.
- Use the checkbox next to each template to select it.
- A preview icon is available to view the template before selection.

The email templates that you select are randomly distributed across your target audience.

3. Template Carousel:
- Once you select multiple templates, a carousel appears at the top of the page.
- Use this carousel to navigate between your selected templates.

4. Sender Profile:
- Select a sender profile for your campaign.
- Fill or edit required fields such as subdomain and domain, subject

- You can also send a test email for each template to see how the template appears in you email client

- Once you select a sender profile ensure that the smtp is shown in green which indicates that the Sender Profile SMTP Connection test result was successful when tested. If a red indicator appears, it indicates the SMTP connection failed and you will not be able to send new campaigns.

- You can also update the sender profile by clicking the edit button next to the from field

In case you want to add the attachments to your templates, you can add the attachment name and the type of attachment you want to send. Currently the following are supported:

  • pdf

  • doc

  • compressed pdf

5. Landing Page Settings:
- You can click on the landing page for each template to enable its settings
- Note: You must provide required fields to enable this option. The required fields are subdomain and domain. Ensure that subdomains are not known brands. If you intend to add a known brand try to spoof it and not use the exact brands characters.

- You can enable or disable the dynamic landing page option for each template independently.

In order to move to the next step you have to fill in all the mandatory fields related to a template and its landing page.

Step 2: Campaign Attributes

  1. In the Title field, type the title of the campaign.

  2. From the Campaign Group drop-down, select the campaign group from the list. You can also add a new group by clicking the add icon, as shown below.

  3. Click Target Audience. This will take you to the next step.

Step 3: Target Audience

  1. In the Filter By field, choosing Criteria will select all the employees displayed in the right section. The Employee option will not select any employees and hence you can manually select the employee(s) of your choice.

  2. You can further use the user group, department, domain, title, office location, employee type, manager, engagement interval, Risk Event Type, and onboard interval options to further filter your search.

  3. Click Schedule. This will take you to the next step.

Step 4: Schedule

  1. Choose Now or Later to schedule the campaign.

  2. From the Start and End fields, select the date and time to schedule the campaign. When you select Now, the Start option is disabled by default.

  3. From the Interval field, select the duration of the campaign.

  4. From the Timezone field, select the timezone of your choice. The company's timezone is displayed as default.

  5. For the Send Report on Completion checkbox:

    1. Enable: You will receive a report via email after the End Date & Time of the campaign.

    2. Disable: You will not receive a report after the End Date & Time of the campaign.

  6. For the Stop Engagement Tracking After Expiry checkbox:

    1. Enable: Enabling this option will expire the Phishing URL sent to users (users will see a simulated landing page)

    2. Disable: Disabling this option will never expire any Phishing URL. All URLs will remain active even after the end date.


Click on confirm details and the following pop-up will appear:


You have to confirm that you have performed whitelisting and then you can send the campaign. The campaign will become live once this button clicked.

The campaign becomes a draft when you Cancel.

Did this answer your question?