I've had two family members scammed through phishing. Yet most sims are designed for business. As scams get more sophisticated, senior citizens are at great risk. Phish Fit sends dummy emails to friends + family, with personalised messages and family photos.
Cool idea. How do you deal with:
1) not getting blacklisted or marked as spam by sending real-looking phishing emails?
2) getting your domain blacklisted by sending phishing emails
3) getting banned from ESP for sending phishing emails
4) legal side?
Really interested in this but as another commenter has hinted at, one of the hardest problems in phishing simulations is having a mail server accept your tests.
You might find that the website itself gets blocked by Google's safe browsing API which can make it much harder to keep online.
Phish Fit
Impala Hotel Booking API