PhishingBox
Security awareness training software
Vulnerability management software
- Features
- Ease of use
- Ease of management
- Quality of support
- Affordability
- Market presence
Take the quiz to check if PhishingBox and its alternatives fit your requirements.
$825.00 per year
Free Trial
Free version unavailable
Small
Medium
Large
- Information technology and software
- Healthcare and life sciences
- Media and communications
What is PhishingBox
PhishingBox is a security awareness training platform focused on phishing simulation and user training to reduce social-engineering risk. It is typically used by IT and security teams to run simulated phishing campaigns, deliver training content, and track user behavior and reporting. The product emphasizes campaign automation, templates, and reporting to support ongoing awareness programs, and it is commonly deployed in small to mid-sized organizations and managed service contexts.
Phishing simulation workflow depth
PhishingBox centers on building and running phishing simulations with configurable templates, landing pages, and follow-up actions. Teams can schedule recurring campaigns and segment users to test different risk groups. This supports continuous measurement rather than one-time training events.
Awareness training and tracking
The platform pairs simulations with training assignments to address users who fail tests or need baseline education. Administrators can track completion and performance over time using built-in reporting. This aligns with common audit and compliance evidence needs for awareness programs.
Program reporting for admins
PhishingBox provides dashboards and reports designed for security administrators to monitor susceptibility and trends. Reporting helps identify high-risk departments and users for targeted interventions. This is useful for communicating program status to management without exporting data for basic metrics.
Limited vulnerability management scope
Although sometimes associated with broader security programs, PhishingBox primarily addresses human-risk testing and training rather than technical vulnerability discovery and remediation. Organizations seeking asset-based scanning, CVE tracking, and patch prioritization typically need separate tooling. This can create gaps if buyers expect full vulnerability management coverage from the product.
Content breadth varies by need
Security awareness programs often require a wide library of modules (e.g., privacy, secure data handling, role-based training) and frequent updates. Depending on the organization’s requirements, teams may find they need additional content sources or customization beyond default materials. This can increase administrative effort for mature programs.
Integration and automation dependencies
Operational efficiency often depends on integrations with identity providers, email systems, and ticketing/HR systems for user provisioning and follow-up workflows. If required integrations are not available or need custom work, administrators may rely on manual processes. That can slow down onboarding, offboarding, and recurring campaign management.
Plan & Pricing
| Plan | Price | Key features & notes |
|---|---|---|
| Standard | $825.00 per year ($16.50 per seat as shown on the vendor page) | Campaign Simulator, Phishing Simulator, Training Simulator, 70+ template languages, KillPhish, Just-in-time Training, Integrations, Email & Live Chat Support, Phone Support. (Displayed on pricing page as "Best Value"). |
| Professional | $1,196.25 per year ($23.93 per seat as shown) | Everything in Standard plus: LMS, API, Dedicated Training Portal, Custom Course Creation, Course Library & Store, Cyber Fundamentals, Custom Branding. |
| Enterprise | $1,567.50 per year ($31.35 per seat as shown) | Everything in Professional plus: Callback Phishing, KillPhish AI, Security Inbox, Course Library & Store, Role-based leadership training (leadership seats limited to 5% of licensed seats). |
| Custom | Custom pricing | Contact sales for tailor-made plans; on the pricing page "Custom" and "Contact Us" are shown for larger or >24,000 email packages. |
Usage-based / prepackaged target-email pricing (vendor lists prepaid email bundles): Pricing model: Pay-per-email / prepaid email packages Free tier/trial (for this model): No permanent free tier shown for email packages Example costs: 600 emails – $1.75 per email ($1,050 / year); 1,200 emails – $1.50 per email ($1,800 / year); 3,000 emails – $1.00 per email ($3,000 / year); 6,000 emails – $0.75 per email ($4,500 / year) (Most Popular); 12,000 emails – $0.68 per email ($8,100 / year); 24,000 emails – $0.56 per email ($13,500 / year); >24,000 emails – custom pricing. Discount options / notes: Site shows "SAVE 20%! Pay annually and save money." Reseller/MSP volume discounts and custom pricing available per reseller/partner pages.
Seller details
PhishingBox (company name not consistently published; vendor information requires confirmation)
https://www.phishingbox.com/
