Cofense PhishMe is a cyber threat and phishing simulator meant to be of use in training employees to be wary against threats and also to gain information about general employee threat knowledge and preparedness. A free trial is available for small business.
N/A
PhishRod
Score 9.0 out of 10
N/A
PhishRod is an integrated & analytics driven solution for phishing readiness, security awareness automation, threat advisory & policy compliance management from the company of the same name in Tracy, CA. It helps organizations to empower end users and cascade the actionable human intelligence across the organization to deter cyber attacks. PhishRod suite includes:
1. Phishing Simulator
2. Security Awareness Manager
3. Threat Advisory Manager
4. Policy Compliance Manager
N/A
Pricing
Cofense PhishMe
PhishRod
Editions & Modules
No answers on this topic
No answers on this topic
Offerings
Pricing Offerings
Cofense PhishMe
PhishRod
Free Trial
Yes
No
Free/Freemium Version
No
No
Premium Consulting/Integration Services
Yes
No
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
—
More Pricing Information
Community Pulse
Cofense PhishMe
PhishRod
Features
Cofense PhishMe
PhishRod
Security
Comparison of Security features of Product A and Product B
Cofense PhishMe
7.8
4 Ratings
10% below category average
PhishRod
8.0
1 Ratings
7% below category average
Single sign-on capability
7.44 Ratings
8.01 Ratings
Role-based user permissions
8.24 Ratings
8.01 Ratings
Security Awareness Training
Comparison of Security Awareness Training features of Product A and Product B
Cofense PhishMe is an excellent solution for scenarios where it will be sold as a managed service. I believe that PhishMe is too expensive for many clients and instead would benefit from the economies of scale where an MSSP sells it as part of a whole service, which offers the analysts and reporting included. PhishMe is excellent for training and awareness of Phishing, but shouldn't replace mandatory training for new joiners or yearly refreshers, it should only be used as an additional training option.
PhishRod has helped us create mock phishing attacks throughout our company to help teach our users what to look for in a phishing attack. The ability to create custom attacks has helped tremendously because we are able to use attacks related to what we encounter on a daily basis. Creating training phishing attack emails has helped improve our overall security.
It gives clear-cut segregation of different parts of an email, header, text and HTML body, URL, attachments, HTML preview and some analytical insight like "similar reports." This distinctive approach actually helps reduce data overload during an analysis.
The URLs captured here pass through an automatic reputation check [in our case VirusTotal] and add a tag of the reputation. If it is a well-known bad URL the tag helps us take the decision fast.
For creating automation rules on the reported emails the "Recipes" section is really helpful. We can create easy recipes [or rules ] to handle a huge flow of reports and also we can create more sophisticated rules depending on the Cyber intelligence feed to catch the really bad currently less known attack attempts by malicious emails.
The "Threat Indicators" section is also useful to use as a threat intelligence source to check the URLs for their maliciousness.
Its built with UX in mind and is aimed at non-tech people, to ensure that almost everyone can run the campaign. But if we go deeper - sometimes you will need an HTML editor or support in order to figure out some advanced edits you might want to add in your scenarios.
I have not had to use their support for pretty much anything. The software works well, and is very intuitive. I would imagine their support would be rather basic as there is not too much that can go wrong with a report phishing button, and if it were I would probably consider a different software.
Cofense PhishMe was the first choice for us as the user interface as well as their bundle package with Cofense Triage and Vision has helped the organisation to alleviate the overall security awareness posture. The other vendors did not provide a vast range of phishing scenarios as compared to Cofense PhishMe platform.
We tested both PhishRod and Phisher for our security needs. They are similar, but in the end we feel that PhishRod was better suited for our needs. Pricing was better and the ROI as well. We are looking for a long term solution and believe we have found it in PhishRod.
Recipes in the system are capable of handling almost 2x what an analyst does, which cuts down the efforts [of] an analyst and provides more time for accurate strategies.
With roughly 90% false positives coming through, the remaining 10% of true positives need as much attention as they can get for the full investigation and analysis.
1,500 or more phishing messages can come through in a given week and the amount of time/employees required to review this without a tool like Cofense is surely beyond [the] expected/anticipated budget.
