HailBytes/gophish-training-templates

GoPhish Training Templates

   

A comprehensive collection of professionally designed email templates and landing pages for conducting effective employee security awareness phishing simulation campaigns using the GoPhish framework.

---

Deploy These in 5 Minutes with HailBytes SAT

[Screenshot: HailBytes SAT dashboard showing this template library loaded alongside campaign analytics and the repeat-offender tracking view — add `docs/sat-ui-preview.png` to display this image]

Running GoPhish yourself means managing infrastructure, maintaining sending profiles, exporting CSVs to track metrics, and stitching together your own reporting. HailBytes SAT gives you all of these templates pre-loaded in a fully managed security awareness training environment — deployed inside your own AWS or Azure account (BYOC) so your data never leaves your cloud.

HailBytes SAT is built for teams that need results without the ops overhead: a hardened enterprise platform, a live metrics dashboard, multi-tenant MSSP support, and compliance documentation (SOC 2 roadmap, NIST CSF mapping) included. Whether you run one campaign a quarter or manage phishing programs for dozens of clients, SAT scales without additional infrastructure work on your end.

<p align="center"> <a href="https://aws.amazon.com/marketplace/search/results?searchTerms=hailbytes+sat&utm_source=github&utm_medium=repo_readme&utm_campaign=gophish-training-templates&utm_content=aws_cta_button"> <img src="https://img.shields.io/badge/Deploy%20on-AWS%20Marketplace-FF9900?style=for-the-badge&logo=amazonaws&logoColor=white" alt="Deploy on AWS Marketplace" /> </a> &nbsp;&nbsp; <a href="https://azuremarketplace.microsoft.com/en-us/marketplace/apps?search=hailbytes+sat&utm_source=github&utm_medium=repo_readme&utm_campaign=gophish-training-templates&utm_content=azure_cta_button"> <img src="https://img.shields.io/badge/Deploy%20on-Azure%20Marketplace-0078D4?style=for-the-badge&logo=microsoftazure&logoColor=white" alt="Deploy on Azure Marketplace" /> </a> </p>

Self-host vs. HailBytes SAT — At a Glance

| Capability | Self-host GoPhish (this repo) | HailBytes SAT (managed) | |---|---|---| | Templates | ✅ This repo | ✅ This repo + additional packs | | Hosting | You manage | BYOC in your AWS / Azure | | Metrics dashboard | DIY (CSV exports) | Built-in (click rate, report rate, time-to-report, repeat offenders) | | Compliance docs | DIY | Provided (SOC 2 roadmap, NIST CSF mapping) | | MSSP multi-tenant | DIY | Built-in | | Support | Community (GitHub Issues) | Enterprise SLA |

---

What's Included

<div align="center"> <img src="travel_phishing.jpg" alt="Security Policy Templates" width="100%" /> </div>

Email Templates (50+ Templates Across 20 Industries)

• Realistic phishing scenarios mimicking common attack vectors
• Corporate communication themes (IT updates, HR notifications, security alerts)
• Social engineering templates (delivery notifications, account suspensions, payment alerts)
• Entertainment platform impersonations (Spotify, Starbucks)
• Financial service attacks (banking, wire transfers, payment confirmations)
• Cloud service phishing (Dropbox, Google Drive, Office 365)
• Healthcare: HIPAA compliance, patient portals, insurance verification
• Education: Student portals, financial aid, academic systems
• Manufacturing: Supplier portals, vendor compliance, supply chain
• Legal: Case management, confidential document sharing
• HR/Payroll: Benefits enrollment, direct deposit, payroll systems
• Technology/SaaS: API keys, developer portals, system updates
• Retail: Loyalty programs, customer accounts, inventory systems
• Hospitality: Hotel reservations, loyalty programs, booking systems
• Utilities: Billing credits, service notifications, account management
• LATAM / Portuguese: Banking alerts, IT helpdesk, HR onboarding, government (Brazil)
• Multi-industry coverage for comprehensive training programs

<div align="center"> <img src="corporate_education.jpg" alt="Security Policy Templates" width="100%" /> </div>

Educational Modules

• Immediate learning opportunities after simulation clicks
• Category-specific training tailored to attack types
• Interactive quizzes to reinforce learning
• Real-world statistics and impact data
• Actionable protection strategies employees can implement
• Progressive difficulty levels for ongoing education

<div align="center"> <img src="credential_harvest.jpg" alt="Security Policy Templates" width="100%" /> </div>

Landing Pages

• Credential harvesting pages for testing user behavior
• Educational notification pages for immediate training
• Mobile-optimized responsive designs for all devices
• Professional, realistic appearance to maximize effectiveness
• Instant educational value rather than just "gotcha" moments

Features

Ready-to-Deploy

• Drop-in templates requiring minimal configuration
• Modern GoPhish syntax with proper template variables
• Mobile-responsive design for all screen sizes

<div align="center"> <img src="best_practices.jpg" alt="Security Policy Templates" width="100%" /> </div>

Industry Best Practices

• Based on real-world attack patterns and methodologies
• Updated for 2024/2025 threat landscape
• Professional design matching legitimate services

Compliance & Ethics Focused

• Designed with privacy and legal considerations
• Educational focus over punitive measures
• Immediate learning opportunities for participants

Highly Customizable

• Easy branding modifications for your organization
• Configurable difficulty levels and scenarios
• Modular design for mixing and matching components

Repository Structure

gophish-training-templates/
├── delivery-shipping/          # Package delivery and shipping notifications
├── it-security/                # IT security alerts and system updates
├── cloud-services/             # Cloud platform phishing (Dropbox, Drive)
├── social-media/               # Social media platform impersonations
├── financial/                  # Banking and wire transfer scams
├── entertainment/              # Entertainment service phishing
├── corporate/                  # Corporate communications and news
├── government/                 # Government agency impersonations
├── microsoft/                  # Microsoft service themed templates
├── healthcare/                 # HIPAA, patient portals, insurance
│   ├── hipaa_compliance_alert.html
│   ├── patient_portal_security.html
│   └── insurance_verification.html
├── education/                  # Student portals, financial aid
│   ├── student_portal_lockout.html
│   └── financial_aid_urgent.html
├── manufacturing/              # Supply chain and vendor portals
│   └── supplier_portal_update.html
├── legal/                      # Case management, document sharing
│   └── case_document_sharing.html
├── hr-payroll/                 # Benefits, payroll, HR systems
│   ├── payroll_direct_deposit.html
│   └── benefits_enrollment.html
├── technology/                 # API keys, developer portals
│   └── api_key_expiration.html
├── retail/                     # Loyalty programs, customer accounts
│   └── loyalty_rewards_expiring.html
├── hospitality/                # Hotel reservations, booking systems
│   └── hotel_reservation_confirm.html
├── utilities/                  # Power/utility billing and credits
│   └── power_outage_credit.html
├── latam-portuguese/           # Portuguese-language templates (Brazil / LATAM)
│   ├── notificacao_bancaria.html       # Banking security alert
│   ├── helpdesk_ti.html                # IT helpdesk credential reset
│   ├── onboarding_rh.html              # HR onboarding document collection
│   ├── receita_federal.html            # Tax authority (Receita Federal) impersonation
│   └── microsoft365_corporativo.html   # Microsoft 365 account blocked
├── landing-pages/              # Credential harvest & education pages
│   ├── credential-harvest.html
│   └── education-notification.html
├── docs/                       # Guides and program measurement resources
│   └── measuring-effectiveness.md
└── campaign-guides/            # Implementation guides & best practices
    ├── implementation-guide.md
    ├── subject-lines-guide.md
    └── best-practices-guide.md

Quick Start Guide

Prerequisites

• GoPhish server installation
• Administrative access to GoPhish interface
• Basic understanding of phishing simulation concepts

Installation Steps

1. Clone the Repository

   git clone https://github.com/hailbytes/gophish-training-templates.git
   cd gophish-training-templates

1. Import Email Templates

   # Navigate to GoPhish Admin Panel
   # Go to Templates > Email Templates > New Template
   # Copy and paste HTML content from desired template
   # Configure subject line (see subject-lines.md for suggestions)

1. Set Up Landing Pages

   # Go to Landing Pages > New Page
   # Import HTML from landing-pages/ directory
   # Configure credential capture settings if using harvest pages

1. Create User Groups

   # Go to Users & Groups > New Group
   # Import your employee list
   # Segment by department or risk level for targeted campaigns

1. Launch Your First Campaign

   # Go to Campaigns > New Campaign
   # Select appropriate template and landing page
   # Configure sending profile with realistic sender
   # Schedule during business hours for maximum realism

Campaign Types Supported

Baseline Testing

Establish current security awareness levels across your organization

• Recommended Templates: IT Security, Delivery notifications
• Frequency: Quarterly
• Target: All employees

Department-Specific Training

Focus on risks relevant to specific roles and departments

• IT Department: Advanced technical phishing, software updates, API security
• Finance Team: Wire transfer scams, payment confirmations, invoice fraud
• HR Personnel: Benefits enrollment, payroll updates, employee verification
• Healthcare Workers: HIPAA compliance, patient portal security, insurance verification
• Legal Teams: Case management, confidential document sharing
• Manufacturing/Supply Chain: Vendor portals, supplier compliance
• Customer Service: Account verification, loyalty programs
• General Staff: Social media, entertainment, delivery scams
• LATAM / Brazil Teams: Portuguese-language banking, tax, IT, and HR scenarios

Progressive Difficulty

Gradually increase sophistication to build resilience

• Level 1: Obvious phishing with clear red flags
• Level 2: Moderate sophistication with subtle indicators
• Level 3: Advanced attacks mimicking legitimate communications
• Level 4: Spear phishing with personalized content

Seasonal Campaigns

Leverage current events and holidays for realistic scenarios

• Holiday Shopping: Package delivery, shopping confirmations
• Tax Season: IRS / Receita Federal communications, financial services
• Back-to-School: Educational platform attacks
• Year-End: HR benefits, company announcements

Educational Approach

Learning-Focused Design

Every template includes corresponding educational content that:

• Explains why the attack was effective
• Identifies specific red flags users should watch for
• Provides real-world cont