general_planing
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revisionLast revisionBoth sides next revision | ||
general_planing [2016/05/20 20:06] – [Checklist: what you may ask your client prior to a phishing campaign] lucy | general_planing [2020/04/28 09:28] – [What other preparations need to be done?] lucy | ||
---|---|---|---|
Line 30: | Line 30: | ||
===== What other preparations need to be done? ===== | ===== What other preparations need to be done? ===== | ||
- | | + | |
- | | + | |
- | | + | |
- | | + | |
- | | + | |
- | | + | |
===== E-MAIL COMMUNICATION AHEAD OF THE CAMPAIGN ===== | ===== E-MAIL COMMUNICATION AHEAD OF THE CAMPAIGN ===== | ||
Line 83: | Line 82: | ||
^ Topic ^ Details | ^ Topic ^ Details | ||
- | | SPAM Whitelist | + | | SPAM Whitelist |
| Recipients | How many users shall be tested? Is it possible to get a [[add_mail_recipients|list of users]] including email, name and additional info (like department, location etc.)? | | Recipients | How many users shall be tested? Is it possible to get a [[add_mail_recipients|list of users]] including email, name and additional info (like department, location etc.)? | ||
| Recipients Allocation | Shall all recipients get the same scenario simulation or a simulation preferred, where user groups get different attack scenarios? | | Recipients Allocation | Shall all recipients get the same scenario simulation or a simulation preferred, where user groups get different attack scenarios? | ||
Line 96: | Line 95: | ||
| eLearning| Should the campaign include also [[awareness_e-learning_settings|eLearning content]]? If yes: does it need to be customized? It is required that individual eLearning statistics are also logged? | | | eLearning| Should the campaign include also [[awareness_e-learning_settings|eLearning content]]? If yes: does it need to be customized? It is required that individual eLearning statistics are also logged? | | ||
| Running the campaign | | Running the campaign | ||
- | | Organizational | + | | Organizational |
| View Only Access | | View Only Access | ||
| Log & Success Level| What is considered a [[success_actions|successful attack]] (link click, data submit etc.)? Should LUCY also trigger [[monitor_a_campaign_statistics|opened mails]]? Can advanced client side scripts ([[beef_integration|BeEF]]) be executed to gather more detailed information about the user? | | Log & Success Level| What is considered a [[success_actions|successful attack]] (link click, data submit etc.)? Should LUCY also trigger [[monitor_a_campaign_statistics|opened mails]]? Can advanced client side scripts ([[beef_integration|BeEF]]) be executed to gather more detailed information about the user? | ||
+ | | Login Restrictions | If a landing page with a login is created: is it necessary to let the user submit the password or shall LUCY redirect the user to a different page before the full password is entered? Is it necessary to implement regular expressions on the login fields in order to avoid false positives? | ||
+ | | Server Location | Should LUCY run in the cloud or on the client' | ||
general_planing.txt · Last modified: 2021/04/06 15:24 by lucy