NEW !  You can now get access to the world’s largest library of security awareness training content

Why Security Awareness Training?

Ransomware. Phishing, Smishing, Vishing. CEO Fraud. Compliance.
Your employees are the weakest link in your network security.

KnowBe4 is the world’s most popular integrated platform for awareness training combined with simulated phishing attacks. KnowBe4 helps thousands of organizations to manage the continuing problem of social engineering, creating a “human firewall” and allowing your employees to remain on their toes with security top of mind.

Security top of Mind

“A company can spend hundreds of thousands of dollars on firewalls, intrusion detection systems and encryption and other security technologies, but if an attacker can call one trusted person within the company, and that person complies, and if the attacker gets in, then all that money spent on technology is essentially wasted.”
Kevin Mitnick


Security Awareness Training’s Steps

#1 Baseline Testing

Cyber-attacks are rapidly getting more sophisticated. We help you train your employees to better manage the urgent IT security problems of social engineering, spear-phishing and ransomware attacks. Take the first step now. Find out what percentage of your employees are Phish-prone with the KnowBe4 free test!

Get the Free Phishing Test!

Train Your Users

On-demand, interactive, engaging training with common traps, live Kevin Mitnick demos and scenario-based Danger Zone exercises.


Phish Your Users

Fully automated simulated phishing attacks, hundreds of templates with unlimited usage, and community phishing templates.


See Results

Enterprise-strength reporting, showing stats and graphs for both training and phishing, ready for management. Show the great ROI!

Security Awareness Training Features…

Training Campaigns

When it comes to rolling out training for your users, KnowBe4’s Automated Training Campaigns do the heavy lifting for you, saving you the hassle associated with setup and chasing down users to complete their training.

Custom Phishing Templates

Apart from the hundreds of easy-to-use existing templates, you can customize scenarios based on personal information, creating targeted spear-phishing campaigns, which replace fields with personalized data.

Custom Landing Pages

Each Phishing Email Template can also have its own Custom Landing Page, which allows for point-of-failure education and landing pages that specifically phish for sensitive information.

Simulated Attachments

Your customized Phishing Templates can also include simulated attachments in the following formats: Word, Excel, PowerPoint and PDF, (also zipped versions of these files).

Detailed Reporting

You'll see reporting for phishing campaigns as well as a general overview of your last 5 campaigns, and you can drill-down into one-time and recurring campaigns for more detail.

Crypto-Ransom Guarantee

We are so confident our security awareness training program works, we’ll pay your ransom if you get hit with ransomware while you are a customer.

…and Free Tools

Phishing Security Test

Cyber-attacks are rapidly getting more sophisticated. KnowBe4 helps you train your employees to better manage the urgent IT security problems of social engineering, spear-phishing and ransomware attacks. Take the first step now. Find out what percentage of your employees are Phish-prone™ with the KnowBe4 free test!

Phish Alert for Outlook

Should they call the help desk, or forward it? Should they forward to IT including all headers? Delete and not report it, forfeiting a possible early warning? KnowBe4’s Phish Alert button gives your users a safe way to forward email threats to the security team for analysis and deletes the email from the user's inbox to prevent future exposure. KnowBe4's free Phish Alert for Outlook is an add-in you can download and deploy at no cost.

Email Exposure Check

Are you aware that many of the email addresses of your organization are exposed on the Internet and easy to find for cybercriminals? With these addresses they can launch social engineering, spear-phishing and ransomware attacks on your organization. The Email Exposure Check (EEC) is a one-time free service. Sign up for your free EEC and find out now which of your email addresses are exposed.

Domain Spoof Test

Are you aware that one of the first things hackers try is to see if they can spoof the email address of your CEO? If they are able to commit ``CEO Fraud``, penetrating your network is like taking candy from a baby. Would you like to know if hackers can spoof your domain? KnowBe4 can help you find out if this is the case with our free Domain Spoof Test. It's quick, easy and often a shocking discovery. Find out now if your email server is configured correctly, many are not!

Ransomware Simulator Tool

Bad guys are constantly coming out with new versions of ransomware strains to evade detection. Is your network effective in blocking ransomware when employees fall for social engineering attacks? KnowBe4’s Ransomware Simulator ``RanSim`` gives you a quick look at the effectiveness of your existing network protection. RanSim will simulate 5 ransomware infection scenarios and show you if a workstation is vulnerable to infection.

Weak Password Test

Did you know 81% of hacking-related breaches used either stolen and/or weak password? KnowBe4’s complimentary Weak Password Test (WPT) checks your Active Directory for several different types of weak password related threats.

Training Preview

You now really have 300+ new ways to make sure your users Think Before They Click! World's largest library of security awareness training content is now just a click away.

USB Security Test

Did you know? On average 45% of your users will plug in USBs... Find out how your users will react to unknown USBs they find with our special, ``beaconized`` file.

We are so confident our security awareness training program works, we’ll pay your ransom if you get hit with ransomware while you are a customer.” – Stu Sjouwerman, Founder and CEO, KnowBe4, Inc.

Download the KnowBe4 Ransomware Manual with an useful checklist on what to do in case of ransoware (and how to prevent future attacks).


And you can see the results!

These results (graph on the right) clearly show the sequence of:

  1. The initial Phishing Security Test (PST) that shows the baseline Phish-prone percentage.
  2. Stepping all employees through our Kevin Mitnick Security Awareness Training.
  3. Follow up with frequent PSTs that continue to keep them on their toes. All our customers’ graphs start out high on the left (baseline), and drop dramatically over time.

The whitepaper “Phishing Breakthrough Point” reports the results of a 6-month experimental study testing the effectiveness duration of the 40-minute KnowBe4 “Kevin Mitnick Security Awareness Training”. The scope of the experiment was on common workplace phishing emails tested among small to medium size companies.

Download the Whitepaper

Think Before You Click!

Bad guys often use email to try to trick you. Learn where to look for red flags that alert you to possible danger. These red flags are in effect for any email that has one or more embedded hyperlinks or attachments.


Security Awareness Training


Kevin Mitnick (born August 6, 1963) is an American computer security consultant, author, and hacker. In the mid nineties, he was “The World’s Most Wanted Hacker”. Since 2000, he has been a successful security consultant, public speaker and author. Kevin does security consulting for Fortune 500 companies, performs penetration testing services for the world’s largest companies and teaches Social Engineering classes to dozens of companies and government agencies. His last book ‘Ghost in the Wires: My Adventures as the World’s Most Wanted Hacker’ was a New York Times bestseller.

Download the KSAT presentation slides below!


Choose Your Subscription Plan!

Features Silver Gold Platinum Diamond
Admin Management Console
Unlimited Phishing Security Tests
Security ‘Hints & Tips’
Training Access Level I
Automated Training Campaigns
Crypto-Ransom Guarantee
Phish Alert Add-in
Phishing Reply Tracking
Active Directory Integration
Training Access Level II
Monthly Email Exposure Check
Vishing Security Test
EZXploit™ - “Automated Human Pentesting”
USB Drive Test™
Vulnerable Browser Plugin Detection
Priority Level Support
Social Engineering Indicators
Training Access Level: Unlimited
AIDA™ Artificial Intelligence-driven Agent BETA

Still in doubt?

Did you know that 91% of successful data breaches started with a spear-phishing attack? Contact us for more info.

Contact Us