Executes authorized phishing simulation campaigns to assess an organization's susceptibility to email-based social engineering attacks. The tester designs realistic phishing scenarios, builds credential harvesting infrastructure, sends targeted phishing emails, and tracks open rates, click-through rates, and credential submission rates to measure human security awareness. Activates for requests involving phishing simulation, social engineering assessment, email security testing, or security awareness measurement.
Works with
AI-first code editor with Composer
Before installing skills in Cursor, ensure your development environment meets these requirements:
node --versionexecuting-phishing-simulation-campaignExecute the skills CLI command in your project's root directory to begin installation:
Fetches executing-phishing-simulation-campaign from mukul975/Anthropic-Cybersecurity-Skills and configures it for Cursor.
The CLI shows a list of agents. Use arrow keys and space to select Cursor:
Confirm successful installation by checking the skill directory location:
Restart Cursor to activate executing-phishing-simulation-campaign. Access via /executing-phishing-simulation-campaign in your agent's command palette.
We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.
Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.
Submit your Claude Code skill and start earning
Automate repetitive workflows and reduce manual effort
Example
Generate reports, summarize documents, draft communications
Save 3-5 hours per week on routine tasks
Learn new skills, understand complex topics, get expert guidance
Example
Explain concepts, provide examples, suggest learning resources
Accelerate learning and skill development by 2x
Enhance output quality through reviews, suggestions, and refinements
Example
Review drafts, suggest improvements, catch errors
Improve work quality by 30-40% with less effort
0
total installs
0
this week
8.6K
GitHub stars
0
upvotes
Run in your terminal
0
installs
0
this week
8.6K
stars
| name | executing-phishing-simulation-campaign |
| description | 'Executes authorized phishing simulation campaigns to assess an organization''s susceptibility to email-based social engineering attacks. The tester designs realistic phishing scenarios, builds credential harvesting infrastructure, sends targeted phishing emails, and tracks open rates, click-through rates, and credential submission rates to measure human security awareness. Activates for requests involving phishing simulation, social engineering assessment, email security testing, or security awareness measurement. ' |
| domain | cybersecurity |
| subdomain | penetration-testing |
| tags | - phishing-simulation - social-engineering - GoPhish - email-security - security-awareness |
| version | 1.0.0 |
| author | mahipal |
| license | Apache-2.0 |
| nist_csf | - ID.RA-01 - ID.RA-06 - GV.OV-02 - DE.AE-07 |
Do not use without explicit written authorization from the organization's leadership, for actual credential theft beyond the authorized scope, for targeting individuals personally rather than professionally, or for sending phishing emails that could cause psychological harm or legal liability.
Design realistic phishing scenarios based on threats relevant to the target organization:
Configure the phishing infrastructure:
target-corp.com, targetcorp-portal.com, targetsupport.netLaunch the phishing campaign:
Process captured credentials to demonstrate impact (if authorized):
Analyze campaign results and produce the assessment report:
| Term | Definition |
|---|---|
| Pretext | The fabricated scenario and social context used to persuade the target to take a desired action such as clicking a link or entering credentials |
| Credential Harvesting | Collecting usernames and passwords through fake login pages that mimic legitimate services |
| GoPhish | Open-source phishing simulation platform that manages email templates, landing pages, target groups, and campaign tracking |
| Spear Phishing | Targeted phishing directed at specific individuals using personalized information gathered through reconnaissance |
| Typosquatting | Registering domains that are visually similar to legitimate domains through character substitution, addition, or omission |
| Security Awareness | Training programs designed to educate employees about social engineering threats and proper reporting procedures |
| DMARC | Domain-based Message Authentication, Reporting, and Conformance; email authentication protocol that prevents unauthorized use of a domain for sending email |
Context: A 2,000-employee company has never conducted a phishing simulation. The CISO wants to establish a baseline susceptibility rate before deploying a new security awareness training program. The campaign should test all employees using a realistic but not overly sophisticated pretext.
Approach:
m365-targetcorp.com, set up GoPhish, and build a landing page cloning the Microsoft 365 login portalPitfalls:
## Phishing Simulation Campaign Report
**Campaign Name**: Q4 2025 Baseline Phishing Assessment
**Pretext**: Microsoft 365 Password Expiration Notice
**Campaign Duration**: November 15-18, 2025
**Target Population**: 2,000 employees (all departments)
### Campaign Metrics
| Metric | Count | Rate |
|--------|-------|------|
| Emails Sent | 2,000 | 100% |
| Emails Delivered | 1,847 | 92.4% |
| Emails Opened | 1,243 | 67.3% |
| Links Clicked | 487 | 26.4% |
| Credentials Submitted | 312 | 16.9% |
| Reported to IT | 23 | 1.2% |
### Department Breakdown
| Department | Employees | Clicked | Submitted | Reported |
|------------|-----------|---------|-----------|----------|
| Finance | 120 | 38.3% | 28.3% | 0.8% |
| Marketing | 85 | 35.3% | 24.7% | 1.2% |
| Engineering| 300 | 15.0% | 8.3% | 3.7% |
| IT | 45 | 8.9% | 4.4% | 11.1% |
### Key Findings
1. Baseline credential submission rate of 16.9% exceeds industry average (12%)
2. Report rate of 1.2% indicates employees are not trained to report suspicious emails
3. Finance department is the highest-risk group with 28.3% credential submission rate
4. Email security gateway did not flag the phishing domain despite being registered 48 hours prior
### Recommendations
1. Deploy mandatory security awareness training with emphasis on phishing identification
2. Install a phishing report button in email clients and train all employees on its use
3. Implement DMARC enforcement (p=reject) and enhanced email filtering rules
4. Conduct targeted training for Finance and Marketing departments
5. Schedule quarterly phishing simulations to track improvement
Prerequisites
Time Estimate
15-45 minutes depending on use case complexity
Steps
Common Pitfalls
✓ Do
✗ Don't
💡 Pro Tips
✓ Use when
Use when skill capabilities match your task, clear ROI on time saved, and you can validate outputs. Best for repetitive tasks, learning, and quality improvement.
✗ Avoid when
Avoid when task requires deep expertise you can't validate, involves sensitive decisions, or when learning process is more valuable than speed of completion.
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
mukul975/Anthropic-Cybersecurity-Skills
Useful defaults in executing-phishing-simulation-campaign — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
executing-phishing-simulation-campaign fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
executing-phishing-simulation-campaign is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Useful defaults in executing-phishing-simulation-campaign — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
I recommend executing-phishing-simulation-campaign for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
Keeps context tight: executing-phishing-simulation-campaign is the kind of skill you can hand to a new teammate without a long onboarding doc.
Registry listing for executing-phishing-simulation-campaign matched our evaluation — installs cleanly and behaves as described in the markdown.
Solid pick for teams standardizing on skills: executing-phishing-simulation-campaign is focused, and the summary matches what you get after install.
We added executing-phishing-simulation-campaign from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
Useful defaults in executing-phishing-simulation-campaign — fewer surprises than typical one-off scripts, and it plays nicely with `npx skills` flows.
showing 1-10 of 39