EZXploit™ has patent-pending functionality that allows you to do an internal, fully automated "human pentest" at a fraction of the cost to do this manually. EZXploit takes your simulated phishing attacks to the next level. You can now find out which of your users can actually be exploited by hackers.
Using EZXploit, you can launch a simulated phishing attack on (groups of) users that contains a link to a web page – which if clicked on – is recorded as a ‘failure’ in your KnowBe4 admin console, but then takes an extra step and comes up with a secondary ruse like a Java popup that the user is social engineered to click on.
If the user clicks on the secondary action, another ‘failure’ is recorded in your admin console and their workstation can be scanned for several things like user name, IP address and other data related to that user's workstation and Active Directory information as specified by you in the admin console. EZXploit gives you a new, automated way to do human pentesting and prevent hackers from owning your network.
USB Drive Test™ Allows you to test your user’s reactions to unknown USBs, on average 45% of users will plug in USBs they find! You can download a special, "beaconized" Microsoft Office file from your KnowBe4 admin console onto any USB drive which you can drop at an on-site high traffic area. If an employee picks up the USB drive, plugs it in their workstation, and opens the file, it will "call home" and report the fail. Should a user also enable the macros in the file, then additional data is also tracked and made available in the admin console.
GEO-location See where your simulated phishing attack failures are on a map, with drilldown capability and CSV-export options.
Vulnerable Browser Plugin Detection Within your console, you can now automatically detect what vulnerable plugins any clickers on your phishing tests have installed in their browsers.