With phishing attacks on the rise, Pittsburgh-based IPA 100 firm Schneider Downs & Co. Inc. (FY20 net revenue of $92 million) has launched redlure, a new open-source platform designed to help organizations create their own phishing tests to assess employee resistance to phishing attacks and identify vulnerabilities.
The inaugural open-source offering from Schneider Downs’ cybersecurity practice, redlure aims to provide users with the ability to self-generate phishing test campaigns that will be realistic and appropriate for each company’s organizational structure. Companies using redlure will be able to manage multiple phishing campaigns at once, mimic user experiences on common or popular websites and encrypt sensitive data within the platform’s database to secure private credentials. Users also will be able to access metrics to track when specific targets have opened emails, clicked links, downloaded payloads and submitted credentials.
“There is an essential need for a phishing platform that can be customized and scaled for the unique needs of each company,” says product engineer Matthew Creel. “Schneider Downs tried numerous tools to create testing environments that mimic real user experiences from cloud services, yet we didn’t find one with the full capabilities that we needed. Ultimately, we determined that we could best meet our needs by programming a solution ourselves.”