Hey all, I hope this video helps you get started with Microsoft Attack Simulation Training capabilities. Looking forward to chatting in the comments. ⏱️ Timestamps: 0:00 Intro 0:59 Microsoft Attack Simulation Training prerequisites 1:34 Microsoft Attack Simulation Training Demo 13:00 End-user experience Demo 14:50 Microsoft Attack Simulation Training Admin Reporting 16:25 Outro
I have a question, when the user clicks on the phising link, he will directly (in 5/10 sec) receive an e-mail for training. Is it possible to delay that?
Great demo! Thank you for taking the time to share this. Question: Do I need to purchase 1 Defender for Office 365 Plan per user in our org? Or only the admin needs to be licensed?
Hi Harry, I absolutely love your videos and I've learnt so much. I hope this comment/feedback is not taken to you by a negative way as it's not my intention but myself and i know others who do not really like videos with the authors video embedded as it's a distraction from looking at the screen.
Great Video, thank you very much! Highly informative and finally also someone showing, how the phishing email to the end user looks like. The video even made me laugh a lot. Just play it back at 0.5x speed. No offence, but at that speed it's hilarious :D
A minor point, but it's worth noting that Microsoft 365 E3, or Microsoft Defender for Office 365 (Plan 2) are the (minimum) licensing requirements to gain access to the Attack Simulator, not necessarily Microsoft 365 E5.
Hey Colin, Thanks for commenting, and I appreciate the guidance. I hope you enjoyed the video. My line in the video was to show a high level of the main SKUs that include the Microsoft Attack Simulator Training capabilities without additional costs. I do not show a list of Microsoft 365 plans that can add on the SKU for Microsoft Defender for Office 365 Plan 2 at an additional cost. I think the following pieces of information are worth reviewing: From the Microsoft documentation, it states: "Microsoft Defender for Office 365 Plan 2 is included in Office 365 E5, Office 365 A5, Microsoft 365 E5 Security, and Microsoft 365 E5." docs.microsoft.com/en-us/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide#microsoft-defender-for-office-365-plan-1-and-plan-2 The following guide also shows a good Matrix of what licensing includes Attack Simulation Training: m365maps.com/matrix.htm You can also see the service description here for Microsoft Defender for Office 365 docs.microsoft.com/en-us/office365/servicedescriptions/office-365-advanced-threat-protection-service-description However, I'm not a licensing expert, so I recommend that anyone reading this refers to their Microsoft licensing specialist to confirm if they have access to the tool.
Hey - is it possible to delete a submitted attack simulation? (I am yet to watch the video in full - so I apologise in advance if I skipped over something).
For the "Send a test" option where I can send a test email to myself, I am receiving the payload email and it looks correct, but after clicking it is not taking me to the landing page I created. Is this normal for the test email?
Hello, good video thanks. I already did a campaign for 300 users but in the end nobody clicked to do the training. Is there a way to run a campaign with just the link to the training? thank you!
Hi Harry, Thanks for this great video but could you please let me know if we can edit or manipulate the payload in credential harvesting without a license?
This video is great! However, will this still work if we are not using Outlook? When sending the test, I am not receiving the email. We currently use Google for email.
Hello Harry, Thanks for the demo. could you or anyone please let me know currently in my organization we have Enterprise Mobility + security E5 & Enterprise Mobility + security E3 and Office 365 E1 for Admin accounts and for users we have Enterprise Mobility + security E5 and office 365 E3, can I use the security attack simulation training from this licenses?, thanks a lot in advance :)
I'm concerned about where user data is stored or if it's stored after getting phished by using this simulator. Any information on this? Or do we just assume it discards the information?
As a CREST/Offensive Security (OSCP) Certified Penetration Tester and Cyber Security Consultant, I have deep knowledge of Security Assessment Methodology to identify vulnerabilities in Network, Cloud, Web, and Mobile Applications.
Hi Larry, thank you for sharing this info! One question; when selecting the simulation technique, only the Credential harvest is selectable, the others are greyed out? Is this an admin permission or admin licensing cause? Thanks!
Hey all, I hope this video helps you get started with Microsoft Attack Simulation Training capabilities. Looking forward to chatting in the comments.
⏱️ Timestamps:
0:00 Intro
0:59 Microsoft Attack Simulation Training prerequisites
1:34 Microsoft Attack Simulation Training Demo
13:00 End-user experience Demo
14:50 Microsoft Attack Simulation Training Admin Reporting
16:25 Outro
I have a question, when the user clicks on the phising link, he will directly (in 5/10 sec) receive an e-mail for training. Is it possible to delay that?
Yes it really helped
Great demo! Thank you for taking the time to share this. Question: Do I need to purchase 1 Defender for Office 365 Plan per user in our org? Or only the admin needs to be licensed?
This is a great video. Easy to understand and covers all the good stuff.
Thank you! I really appreciate your feedback. I hope you have a great rest of the week.
Hi Harry,
I absolutely love your videos and I've learnt so much. I hope this comment/feedback is not taken to you by a negative way as it's not my intention but myself and i know others who do not really like videos with the authors video embedded as it's a distraction from looking at the screen.
Great Video, thank you very much! Highly informative and finally also someone showing, how the phishing email to the end user looks like.
The video even made me laugh a lot. Just play it back at 0.5x speed. No offence, but at that speed it's hilarious :D
Glad it helped.
Hahaha i am going to have to try listening back at that speed
Great content and demo! Will share with my CISOs
Thank you, Simona! 🙏🏻
thank you for the detailed information
Welcome 🙏🏻
Do only the admins need to have the E5 licensing, or does everyone need to have that licensing that I plan to run the simulation on?
A minor point, but it's worth noting that Microsoft 365 E3, or Microsoft Defender for Office 365 (Plan 2) are the (minimum) licensing requirements to gain access to the Attack Simulator, not necessarily Microsoft 365 E5.
Hey Colin, Thanks for commenting, and I appreciate the guidance. I hope you enjoyed the video.
My line in the video was to show a high level of the main SKUs that include the Microsoft Attack Simulator Training capabilities without additional costs. I do not show a list of Microsoft 365 plans that can add on the SKU for Microsoft Defender for Office 365 Plan 2 at an additional cost.
I think the following pieces of information are worth reviewing:
From the Microsoft documentation, it states:
"Microsoft Defender for Office 365 Plan 2 is included in Office 365 E5, Office 365 A5, Microsoft 365 E5 Security, and Microsoft 365 E5."
docs.microsoft.com/en-us/microsoft-365/security/office-365-security/defender-for-office-365?view=o365-worldwide#microsoft-defender-for-office-365-plan-1-and-plan-2
The following guide also shows a good Matrix of what licensing includes Attack Simulation Training:
m365maps.com/matrix.htm
You can also see the service description here for Microsoft Defender for Office 365
docs.microsoft.com/en-us/office365/servicedescriptions/office-365-advanced-threat-protection-service-description
However, I'm not a licensing expert, so I recommend that anyone reading this refers to their Microsoft licensing specialist to confirm if they have access to the tool.
Hey - is it possible to delete a submitted attack simulation? (I am yet to watch the video in full - so I apologise in advance if I skipped over something).
Hey, Does Microsoft 365 Business - Premium offer this feature? Thanks.
Do all users (targets of the simulation) require the E5 or plan 2 licensing as well? Or just the Admin?
For the "Send a test" option where I can send a test email to myself, I am receiving the payload email and it looks correct, but after clicking it is not taking me to the landing page I created. Is this normal for the test email?
Question please: How do I include the region aware feature if it is missing in my tenant?
Hello, good video thanks.
I already did a campaign for 300 users but in the end nobody clicked to do the training.
Is there a way to run a campaign with just the link to the training?
thank you!
Hi Harry,
Thanks for this great video but could you please let me know if we can edit or manipulate the payload in credential harvesting without a license?
This video is great! However, will this still work if we are not using Outlook? When sending the test, I am not receiving the email. We currently use Google for email.
Hello Harry,
Thanks for the demo.
could you or anyone please let me know currently in my organization we have Enterprise Mobility + security E5 & Enterprise Mobility + security E3 and Office 365 E1 for Admin accounts and for users we have Enterprise Mobility + security E5 and office 365 E3, can I use the security attack simulation training from this licenses?, thanks a lot in advance :)
Very informative
Glad it was helpful!
I'm concerned about where user data is stored or if it's stored after getting phished by using this simulator.
Any information on this? Or do we just assume it discards the information?
As a CREST/Offensive Security (OSCP) Certified Penetration Tester and Cyber Security Consultant, I have deep knowledge of Security Assessment Methodology to identify vulnerabilities in Network, Cloud, Web, and Mobile Applications.
Great video!
Hi Larry, thank you for sharing this info! One question; when selecting the simulation technique, only the Credential harvest is selectable, the others are greyed out? Is this an admin permission or admin licensing cause? Thanks!
Same question for me as well
@@mgaff1981 I found out it is a license issue. After purchasing 1 E5 license all the attack simulation types are available