How are phishing simulations created?

Anagram Security uses role, geography, and behavior data to automatically generate phishing emails that match each user's individual context. It's a phish testing tool that truly adapts to your workforce.

Are the simulations aligned with the NIST Phish Scale?

Yes. Every phishing simulation training email is scored and deployed based on the NIST Phish Scale, giving you clarity into how well your employees are actually doing.

Does each employee get a different phishing email?

Yes. You have the option to deliver a unique, personalized phishing email to every user in a single campaign.

How much time does Anagram Security save my team?

Anagram Security can save 10 to 15 hours per campaign by removing the need to build templates, segment targets, and compile manual reports, compared to traditional phishing testing tools.

What happens after a user clicks a phishing email?

You can configure immediate behavior-driven training based on the type of failure (e.g., click, credential submission), making your phishing simulation program both reactive and proactive.

Can I run simulations globally?

Yes. Simulations can be localized and adapted for international users, with support for multiple languages coming soon.

Automated, adaptive phishing simulations calibrated to real user behavior

Name: Phishing Simulation Platform
Brand: Anagram Security
Price: Contact for pricing USD
Availability: InStock

Train your team to recognize and respond to real phishing threats with simulations that adapt based on user behavior and current attack trends.

BOOK A DEMO

Trusted by leading security teams worldwide

Trusted by leading companies including Yum! Brands, Disney, Finance of America, ID.me, Johnson & Johnson, Kraft Heinz, Pfizer, Post Holdings, and Thomson Reuters

Phishing simulations are only useful when they reflect real-world threats

Anagram Security Smart Phishing creates custom simulations for each employee. We use their job title, behavioral history, and organizational context to automatically generate phishing emails that match their role and skill level.

No manual targeting. No repeat templates. Just high-fidelity, automated phishing simulations that evolve with your workforce.

Leveraging the NIST Phish Scale

What sets us apart is our use of the NIST Phish Scale. This scale rates how well or poorly users can detect a phishing attempt on a scale of 1-7.

Implementing the Phish Scale can be complex and intimidating. Anagram Security simplifies that process by incorporating the scale directly into our simulation engine.

The best part? No heavy lifting

Difficulty levels are mapped automatically, and emails are finetuned to individual roles and behaviors. Practitioners can confidently say their phishing simulation training program is structured around a standardized, research-backed approach, without the manual effort.

Track an accurate level for every employee, apply appropriate training, and report on growth.

Why it works

Powered by NIST

Powered by the NIST Phish Scale to assess and track your employees' ability to spot attacks, scored to an objective industry standard.

NIST Phish Scale Rating

Sarah (Finance)Level 6

Mike (Sales)Level 4

Alex (HR)Level 2

Industry Standard Assessment

Intelligent adaptation

Adaptive simulations that become harder or easier based on an individual's performance.

Adaptive Training Path

✓

Level 3: Basic Phishing

Passed - Moving to Level 4

Level 4: Advanced Phishing

Current Challenge

Level 5: Expert Challenge

Locked

Personalized targeting

Customized simulations for each employee based on their role, behavior, risk vectors, and geography to prevent office-wide tip-offs.

Personalized Campaigns

Finance Team

Invoice-themed attacks

NYC Office - High Risk

Engineering

Code repository scams

Remote - Medium Risk

Sales Team

Customer communication

London Office - High Risk

Unique scenarios per employee

Automated campaign creation

Automated campaign creation that save 10–15 hours per campaign through dynamic email generation, without needing to spend time picking or creating templates.

Campaign Setup

Target Selection✓ Automated

Email Generation✓ AI-Powered

Difficulty Calibration✓ NIST-Based

Launch & Monitor✓ One-Click

15 hours saved

Per campaign vs manual setup

Meaningful reporting

Easy, meaningful reporting across your business. Communicate outcomes that directly correlate with risk reduction.

Executive Dashboard

Overall Risk Score87%

456

Emails Sent

Clicked

📈 23% risk reduction this quarter

Our Phishing Philosophy

"Phishing simulations are often the most visible touchpoint employees have with their security teams, but the 'we tried to trick you' mentality can lead to resentment and distrust. Our approach respects employees and assesses them based on their real skill level. Most importantly, we don't fudge the numbers. We know security teams can send an easy-to-spot phishing test that will make the team look good in theory. But it doesn't make your workforce any safer. By using the NIST Phish Scale we're giving you real, meaningful, reportable data on your vulnerabilities, and actionable insights on how to address them."

Harley Sugarman

Founder of Anagram Security

Scale without compromise

Targeted at scale

Legacy vendors let you send one phishing email to 1,000 people.

Anagram Security sends 1,000 different emails—each one personalized to the user's role, behavior, and risk profile.

Campaign Dashboard

1,000 emails

Engineering Team250 variants

Marketing Team180 variants

HR Team200 variants

Finance Team190 variants

Executive Team180 variants

Personalization Level100%

Adaptable to each user

With traditional platforms, creating even five targeted templates adds hours of segmentation, copywriting, and testing.

With Anagram Security, the entire campaign is generated automatically, aligned to NIST standards, and dynamically adjusts as users evolve.

NIST Campaign Generator

Automated & Adaptive

Campaign StatusActive

Auto-generating templates...

NIST Alignment✓ Verified

User AdaptationReal-time

Personalized follow-up training

Deliver individualized follow-up training based on user response and propensity to click so you can show meaningful progress in phishing resilience over time.

John Smith

Marketing Team

Recommended Training

Email Security Fundamentals

Risk Level: Medium

Clicked 2 of last 5 simulations

Progress: 65% Complete

The difference?

Remove the guesswork from phishing simulation and training. Save time with automated phishing for your entire enterprise, without needing to create every email manually. It's not just realism—it is scale without compromise.

🎯

Enterprise Dashboard

Automated Phishing Platform

Manual Setup Time0 hours

Previously: 40+ hours/campaign

Email TemplatesAuto-generated

1,000+ unique variations

Enterprise Scale✓ Ready

10,000+ employees supported

Ready to strengthen your phishing defenses?

See how our adaptive phishing simulations can help your team recognize and respond to real threats with confidence.