Overview
What is KnowBe4 PhishER/PhishER Plus?
PhishER is presented as a lightweight Security Orchestration, Automation and Response (SOAR) platform to orchestrate threat response and manage the high volume of potentially malicious email messages reported by users. And, with automatic prioritization of emails, PhishER helps InfoSec and…
KnowBe4 PhishER - security made simple
KnowBe4 PhishER Review
KnowBe4 PhishER works for me!
Happy with PhishER
Great training and testing tool
KnowBe4 PhishER - an easy and robust application
KnowBe4 PhishER has saved us $100K's
KnowBe4 PhishER is a game changer
Strong recommendation for KnowBe4 PhishER and all KnowBe4 products
KnowBe4 PhishER is a great service
The fantastic KnowBe4 PhishER SOAR platform
Phishing Hero!
KnowBe4 PhishER - A great tool to use as a second line of defense
PhishER - Don't Phone Home Without It.
How KnowBe4 PhishER/PhishER Plus Differs From Its Competitors
Time Savings
Time Savings
PhishER Capabilities
Time Savings
Time Savings
PhishER Capabilities
Time Savings
Time Savings
PhishER Capabilities
Time Savings
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
Time Savings
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
Revision - too many false positives.
PhishER Capabilities
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Time Savings
PhishER Capabilities
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Popular Features
- Company-wide Incident Reporting (52)7.878%
- Live Response for Rapid Remediation (55)7.878%
- Centralized Dashboard (62)7.878%
- Machine Learning to Prevent Incidents (54)7.777%
Reviewer Pros & Cons
Pricing
3001-5000 Monthly Pricing Per Seat
$0.50
2001-3000 Monthly Pricing Per Seat
$0.55
1001-2000 Monthly Pricing Per Seat
$0.65
Entry-level set up fee?
- Setup fee optional
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Features
Incident Response Platforms
Incident response (IR) platforms guide countermeasures against a security breach and deploy preplanned, automated threat responses
- 7.8Company-wide Incident Reporting(52) Ratings
Built-in enterprise-level ticketing system to leverage the knowledge of the entire workforce, not just the security team
- 6.8Integration with Other Security Systems(47) Ratings
Pre-built integration with other security systems like SIEM and threat intelligence
- 7.8Centralized Dashboard(62) Ratings
A central dashboard provides analysts with a clear look at the most important data
- 7.7Machine Learning to Prevent Incidents(54) Ratings
Incident prevention powered by machine learning with no human intervention
- 7.8Live Response for Rapid Remediation(55) Ratings
Live remediation response allows incident responders to initiate remediation from anywhere over secure connection
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is KnowBe4 PhishER/PhishER Plus?
PhishER is a platform for managing the high volume of potentially malicious email messages reported by users. With automatic prioritization of emails, PhishER aims to help InfoSec and Security Operations team cut through the inbox noise and respond to the most dangerous threats more quickly.
PhishER is a web-based platform with critical worksteam functionality that serves as a phishing emergency room to identify and respond to user-reported messages. With PhishER, users are able to automate the workstream of 90% of reported emails that are not threats, freeing up incident response resources.
PhishER is available as a stand-alone product or as an optional add-on for KnowBe4 customers that want to automatically prioritize and manage potentially malicious messages that were reported through the KnowBe4 Phish Alert Button. PhishER Plus is an upgraded subscription level that includes all of the features from PhishER with additional enhancements and AI-validated crowdsourced data. PhishER Plus was developed to help supercharge an organization’s email security defenses. It does this by automatically blocking phishing attacks that traditional Security Email Gateways (SEGs) miss and removes these missed threats from users’ inboxes.
KnowBe4 PhishER/PhishER Plus Features
Incident Response Platforms Features
- Supported: Company-wide Incident Reporting
- Supported: Integration with Other Security Systems
- Supported: Centralized Dashboard
- Supported: Machine Learning to Prevent Incidents
- Supported: Live Response for Rapid Remediation
Additional Features
- Supported: Automatic Message Prioritization
KnowBe4 PhishER/PhishER Plus Screenshots
KnowBe4 PhishER/PhishER Plus Video
KnowBe4 PhishER/PhishER Plus Integrations
KnowBe4 PhishER/PhishER Plus Competitors
KnowBe4 PhishER/PhishER Plus Technical Details
Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
---|---|
Operating Systems | Unspecified |
Mobile Application | No |
Supported Countries | Global |
KnowBe4 PhishER/PhishER Plus Downloadables
Frequently Asked Questions
Comparisons
Compare with
Reviews and Ratings
(160)Attribute Ratings
Reviews
(1-25 of 41)KnowBE4 PhishER Review.
- Categorization of suspect emails to Benign, SPAM and Threat.
- Integration to VirusTotal, Ticketing platform.
- Smart Dashboards.
- Canned auto - response email to end-users.
- AI/ML algorithm could be improved to reduce false positives and increase auto-resolved suspect emails.
KnowBe4 PhishER - security made simple
- Automatically evaluates reported emails
- Once it determines a threat, it pulls the email from all other mailboxes and quarantines them
- One button block list can be set up for repeat senders
- If an email is determined to be clean, a button to notify the reporter that it was clean and that they could find it in the deleted folder, with reference to the email would be nice.
KnowBe4 PhishER works for me!
- User Interface is easy to use.
- Saves time by classifying emails as malicious or not.
- In PhishRip portion would like to see more details regarding the message that is being ripped.
Happy with PhishER
- Automates phish report response
- Highlights email header information
- Saves time for our team.
- The rule setup could be easier to follow
- Make it so you don't have to click back and forth with manually looking at emails
- Make the email quarantine longer than 30 days.
KnowBe4 PhishER - an easy and robust application
- Customer Support; especially when we brough the application on board. The attention to detail, instruction, and help KnowBe4 team gave us is quite good!
- A wide variety of trainings, over a multitude of topics.
- Phishing Tests; "set it and forget" with metrics!
- For start-up biotech/pharmaceuticals, I think KnowBe4 PhishER is the perfect addition!
- Simple, easy to use. Minimal training required.
- Helps you focus on the most important vs. reviewing thousands of emails.
- Doesn't require a full-time resource.
- Ability to integrate/share data with other SIEM solutions.
KnowBe4 PhishER is a great service
- Allows users to notify admins of a phishing email
- Helps us train our users on proper email usage
- Gives us information on what kind of emails are being reported
- KnowBe4 PhishER could have a simpler login process
- Email notifications would be nice
- A phish confidence level on the emails reported could be useful
- Reporting Emails
- Blocking Domains and Senders
- Virus Total Built In
- Discussion with other Admins
- Ability to discuss with User (Not Just Admins)
- Ability to Block Senders and Domains for Longer than 60 days
- Ability to view information such as IP Address, Estimated Location at a glance
PhishER - Don't Phone Home Without It.
- The machine based learning does a great job of correctly identifying safe vs. malicious emails.
- PhishRIP does an excellent job of finding and quarantining similar emails from other users accounts.
- The reports give us a real time insight into trends and campaigns launched by bad actors.
- Somtimes the PAB (or Phish Hook) has to have its permissions revalidated. This is a quick fix, but takes some knowledge.
- I honestly can't think of any other shortcomings at this time.
- See #1
- automation tasks for known false positives
- providing information for phishing email determination
- informative dashboard
- setting up automated tasks
- rooms is not really understood
- customizable reports
KnowBe4 PhishER - Rapid and efficiency phishing response
With KnowBe4 PhishER, the process is now highly automated, and we can remove phishing emails from dozens of inboxes in just a few clicks.
Our users appreciate it because they receive much quicker feedback on clean emails.
IT appreciates it because it makes our job a breeze and lets us focus on the important elements of incident response.
Management appreciates it because it helps keep our institution safer and gives them excellent reporting metrics.
- Quick phishing email review
- Automated analysis and tagging
- Immediate quarantine and removal
- Quicker / more efficient PhishRIP
- Improved "Find Similar Messages" filtering options
- Improved notification options
You've got to get KnowBe4 PhishER
- Blocks emails based on sender, attachments and URLs
- Pulls known phishing emails
- Converts phishing emails to training emails
- Integrates with Outlook
- Preview attachments when blocking them
- Send emails externally when using actions
- More powerful PhishRIP
PhishER, will probably save your Admin time.
- Find Threat emails
- Auto respond to clean emails the end user needs.
- Lowers the number of critical emails admins need to work with.
- Removes Threat emails directly from the end users mailbox.
- Query isn't granular enough to pull emails from mailboxes for spam that have very little information. Like no subject, no body, no attachment. It requires at least 2 items to query.
- It needs an additional Virus Total account. Knowbe4 should build that into the back end and just charge accordingly for the enterprise connection. Felt blindsided to the additional cost needed later.
- Some of the rules and actions are more complicated to setup than it should be. Which could be addressed for parts of that with a simplified interface and more intuitive for the person to setup. Someone that works with the product every day probably understands it, but as much the setup is setup and forget you need to relearn how that might work the next time you need to make changes. It could be less programmer like and more user friendly.
Love KnowBe4 and PhishER!
- Lets the user know that the message has been sent to KnowBe4 and IT
- Gives me a score on what they think the message is (clean, spam, threat)
- Pulls message out of others inboxes
- Might be nice to give users scores on how accurate they are with using it
- It would be nice if it recommended certain messages if someone didn't check it
A great help to skeleton crew IT departments!
- automated message header decoding
- remote removal/deletion of phishing mails from entire mail environment
- fast and easy false positive/clean identification
- easier customization of automation rules
- better end-user feedback to message submitter of submission status
Anything less than 10 users submitting messages to PhishER, and it's probably not worth the cost of the subscription in comparison to 1:1 communication.
If you have an email system that it doesn't tie well with, it'll be more difficult to get the really really nice integrations working in a way that truly saves time/effort/money.
PhishER saves time and reduces risk
- Automates handling of reported phishing emails
- Allows admins to check what's been done
- Allows admins to manually handle emails the AI isn't sure about
- The workflow for manually handling phish removal from all mailboxes is a bit "clicky"
- Web UI can be a little slow
- PhishER Plus (the shared blocklist) doesn't support GMail, only 365
Manual handling of the remaining reported phishing emails is a bit slow and "clicky".
Quick Thoughts
- Clean Users Inbox from threats
- Alerts me in a timely manner
- Scans
- Simply use even more
- Continue follow up training
Catch Fake Emails with PhishER!
We've got great buy-in from most management regarding issues like this as well. The best part of the software is being able to run queries on submitted emails and then quarantining and deleting said emails.
- Allows the removal of Malicious Emails
- Groups similar emails into categories for email reporting
- Also allows you to see who has submitted the most phishing/spam/clean emails within reports.
- GUI Based search rules, the current way to create rules for specific the current way to create a rule is using "yara" conditions, which for someone that is not familiar with them can be cumbersome.
- A wider way to find similar messages. Currently you have to choose from 2 of 5 options, and you don't always find malicious emails when using just subject/sender (when the sender is clearly the same for a targeted phishing campaign).
- SOMETIMES the speed with which a submitted email hit's the PhishER Inbox can be longer than I would like (closer to an hour) and others it is within seconds.
New Product. Still getting up to speed. Huge potential.
- Integrate with M365
- Integrate with KnowBe4 Phish Reporting
- Provide feedback to staff
- Setup of rules and actions is still a little confusing.
- I don't want to create too much traffic for the end user - need to tweak.
- I still want to see what users are submitting - a little tricky to figure out, but getting help.
KnowBe4 PhishER is the BEST product available
- Training content is well crafted and professional
- Reporting is quick and easy
- They make learning fun and entertaining
- Too many videos/training videos are released at once
- Inside Man has been going on tooooooooo long
KnowBe4 PhishER is a good tool at a good price
- Automation
- good detection rules
- ability to integrate with o365
- support is very good
- Since we are new to the product, I do not have anything for this option.
- Assist the InfoSec team in determining if a message is legitimate or not.
- Easy was to read headers and raw data of messages
- Automation of determining if a message is legitimate.
- Setting up initial settings can be daunting without their support
- The Search query can be difficult to learn until you gain the experience
- Determining how to setup automatic messages back to employees initially
Great product for Phishing remediation
- Automation
- Email details
- Integration with other APIs
- Further customization of auto-actions would be beneficial
PhishER is wonderful
- Phishrip
- Email and attachment scans
- Able to set up rules very easily
- More integration with Gsuite
- Creating blocklist for Gsuite
- Rooms section on the dashboard is slow to load
KnowBe4 PhishER makes phishing email remediation a breeze
- Email forensics
- Automated remediation
- Converting real phishing emails into test emails
- Navigation and UI can be a little clunky to use
- Better training on usage