Articles in this section

Customizing Templates - Email Tab

Rudi Schenck
  • Updated
Follow

Customizing-Templates-Email-01.PNG

1. Template Top Bar contains several important items.

  • save-icon.png You will need to click the Save button in order to retain any changes you have made while editing, this includes any information entered on a pop up window.
  • Close-Icon.png Clicking the Close button will return you to the Manage Phishing Templates page.
  • preview_test-Icon.png In order to send yourself a preview email of the template use the Preview & Test button.

2. Errors & Warnings contains sections that will notify you if there are any problems with the template that could cause problems when sending a phishing campaign. Every time you save the template the system will scan the template for these and update the template with the appropriate messages. These warnings will also be displayed when creating a test so that you don’t accidentally use a template that has errors. This section will appear on each of the tabs of the editor since each element is its own template.


3. Template Settings

  • Template Title and Template Description Inputs are where you can modify the title and description of the template to better identify it elsewhere in the portal.
  • Template Categories allow you to classify the template to aid in filtering and searching elsewhere in the portal.
  • Domain Name is the domain of the phishing landing page that the target will be taken to if they click on the link in the phishing email. You have the option to use one of the system domains (which will be delivered over a secure HTTPS connection) or your own custom domain (delivered over an HTTP connection).

Customizing-Templates-Email-02.PNG

  • In order to use your own custom domain, you will need to set portal.trainingcenter.com as the target for the CNAME in your DNS configuration and pass the connection test on the Change Domain pop up window.

Customizing-Templates-Email-03.PNG

4. Email Editor allows you to edit the content of the email through a WYSIWYG editor. Editable sections will be highlighted by a dashed orange box when you roll over the section. A pop up window will open with the content. Any links you want to redirect to the template’s landing page (and be tracked) should use {hook_url} as the URL. The system will replace this tag automatically with the appropriate link.

Customizing-Templates-Email-04.PNGCustomizing-Templates-Email-05.PNG

When editing the template, the Variables dropdown allows you to select items that will be replaced in the actual test email. These include, but are not limited to, such items as the target’s name, or optional group and target fields. See the appendix for a listing of available variables. The “hook_url” can be used in place of the “hook_link”. This option will show the entire url in the email. This is also used if you want a clickable image. Images may also be clickable for tracking purposes, simply place {hook_url} in the Image URL field.

Customizing-Templates-Email-06.PNG

1. Email Settings allows you to set the from name, from email, reply-to email, and subject line for the phishing email.

2. Completion Settings allows you to set up the next step in the phishing progression.

  • Landing Page allows you to select a landing page to redirect the target to where they can continue to be phished, either your own custom page or a system library page. There is also an option to copy the current landing page (if one is already selected) or create a new page from scratch.
  • Training Page allows you to select a training page to redirect the target to, either your own custom page or a system library page. There is also an option to copy the current training page (if one is already selected) or create a new page from scratch.
  • URL Redirect allows you to redirect the user to any URL you choose.

The appropriate secondary fields you will need to fill out will appear based upon your selection in landing Page Options, either a drop down to select the landing/training page you want or a text input to enter a URL.

3. Custom Mail Servers allow you to configure you own mail servers to send the test emails (the SMTP settings) or a custom inbox (the IMAP settings) to receive reply-to emails that the system can scan and log. For each you will need to know the host, port, username, password, and encryption type. Once your settings are entered, you will need to click the Test Settings button to verify that the system can connect.

Customizing-Templates-Email-07.PNG

4. Tracking Settings allow you to adjust how failures will be tracked for the template.

The {hook_url}/{hook_link} is how the system tracks a “Click” and the way you get your targets to the next step in the phishing progression. Unless you only want to track email replies, your email MUST contain one of these customization tags in the email body.

  • Should {hook_link} click be a failure? allows you to determine if clicks in the email should be logged as failures or not.
  • Hook URL Link Text is the text that will appear in the email link.
  • Not Needed: Using {hook_url} allows you to use the url as the text instead.

Track Attachment Open allows you to add an attachment to your email that can be tracked in the system. In order to use this option, you must use one of the predesigned files from the system (either Word or Excel). You can download these files directly from the template editor. These files contain special tracking keys that the system is listening for. You are free to add your own content to these files, however do not modify the {{tracking_key}}. For word docs, the key must be on its own line at the bottom of the page. For excel files, the {{tracking_key}} must be in sheet 1 in cell A299. Save as docm or xlsm. Once you have finished editing your files you can upload them using the Add Attachment button.

Track Reply-tos allows you to track email replies to your phishing emails. In order for this to work you will need to set up an incoming mail server (IMAP) for the system to monitor. The system will log in periodically and scan for emails. To enter your IMAP credentials into the system, click on the Change Outgoing/Incoming Server link and a pop up window will appear that will allow you to test the connection.

Track Email Open (DEPRECATED) has been removed from the options. Now all email opens will be tracked by default.

5. Misc. Settings

  • Hook URL Link Text allows you to customize how the URLs are displayed in the emails. By entering text in this field you can customize how the anchor tag will read. Additionally, you can choose to check the Not Needed check box to display the link URL in the text instead.
  • Custom Header Name & Value allow you to add your own custom header information to your email to help you whitelist and prevent test emails from going to the spam folder.

6. Additional Links

  • Edit HTML opens a pop up window where you can edit the email HTML directly.
  • Change Layout allows you to change the layout of the email.

Related articles

Comments

0 comments

Please sign in to leave a comment.