Domains

Introduction: LUCY supports multiple domain names for campaigns on virtualized servers. Users can add domains via the registration wizard or request assistance from our support department. What type of domains can be configured?

Administrative Domain

This is the domain used for hosting your Lucy Administrative panel. VPS customers will receive a server with a generic domain, for example -> access.cloudserver123.com - If you would like to host your Lucy VPS with a custom domain, please send a request to our support department for assistance. On-premise / Self-hosted customers will be able to configure a custom domain in the setup script phase of the installation process.

Phishing Simulation Domains

These domains are used to spoof legitimate domains to assess the attentiveness of the user interacting with the simulated attack. These domains can be registered via the domain wizard or by pointing a pre-owned domain to your Lucy server.

Awareness Training Domains

Register a domain via the Domain Registration Wizard:

Navigate to Settings -> Common System Settings -> Domains

On the Domain page, you have two options to add a domain, Register and Add:

Why do you need to register an Attack Domain?

Registering an attack domain serves two key purposes. Firstly, it enables the creation of domains resembling the targeted organization in simulations, such as using "mirconsoft.com" instead of "microsoft.com," enhancing the realism of the simulation. Secondly, it prevents blacklisting of the Lucy system domain. Since domains can be blacklisted for low reputation or short existence, using a separate attack domain safeguards your Lucy server's System domain and ensures the effectiveness of future campaigns.

Register

Registering a domain through the Domain Registration Wizard is both fast and streamlined. The wizard will initiate an API call to GoDaddy, the domain registrar, to configure all relevant DNS records. This setup enables hosting of landing pages, sending emails from the Postfix server on behalf of the domain, and receiving replies directed to the domain.

This option will allow you to submit a domain name to check for availability, if the domain is available you will be redirected to the domain registration page.

Please ensure the information provided on the registration form is accurate, especially the email address. This is crucial because all communications from the registrar and access to the domain's DNS portal will be limited to the email address submitted in the registration process.

Add a Domain:

To add a domain you already own, simply click the "Add" button and enter your domain name:

Prerequisites for Adding a Custom Domain

Please be aware that when adding a domain to Lucy, you are required to manually create all relevant DNS entries in the registrar's administration panel. This step is necessary for the domain to properly point to the Lucy server, enabling it to send and receive emails associated with this domain. For Example, to point all relevant DNS records of the domain "thrivedx.help" to my Lucy server, with the server's IP address being 65.109.169.227, the following DNS records will be added (replace the IP address with your Lucy server IP address):

DNS records explained

A Record with "@": This record connects your main domain (like "thrivedx.help") directly to an IP address, which is the unique number assigned to your Lucy server on the internet. Think of it as telling the internet where your website's home is.
A Record with "*" (Wildcard): This is similar to the above, but it's for all subdomains of your website. A subdomain is anything that comes before your main domain, like "blog.thrivedx.help" or "shop.thrivedx.help". This record means that no matter what subdomain someone types in, they'll be directed to your Lucy server.
TXT Record with "@": This is a note attached to your domain that helps with email delivery. It specifies which servers are allowed to send emails from your domain, helping to prevent spammers from using your domain to send fake emails.
TXT Record with "*" (Wildcard): This applies the same email delivery rules as the previous record, but for all subdomains of your domain.
MX Record with "@": This tells the internet where to deliver emails for your domain. It points to an address that handles all your email messages, ensuring that when someone sends an email to "@thrivedx.help", it goes to the right place.

The "Priority" number for MX records tells the internet which server to try first; lower numbers are tried before higher ones.

Custom 404 page for Domain

Users may receive random links during phishing simulations, leading to a 404 error if they visit the domain directly. To prevent LUCY from revealing itself, define a custom error message or homepage.

Note that if you use an IP address instead of a domain, the custom 404 page will not be displayed.