My main use case for Gophish is for penetration testing on cybersecurity with phishing links and others. We used Gophish to test the mindset of different users in the company. We used Gophish to send intrusion links and links by email, for example, links supposedly from sites they visit or related to their Facebook or Instagram account. We determined the number of people who clicked on the link, those who reported it before clicking on the link, and those who did not click on the link. It was a survey campaign that we conducted after an awareness session that we carried out with the different users of the company.
Analista de TI at a educational organization with 1,001-5,000 employees
Real User
Top 10
May 18, 2026
I have been using Gophish for a year. My main use case for Gophish is awareness campaigns for staff. A specific example of how I use Gophish in a campaign for staff is that I create fake internal-use pages and send them to collaborators' emails to see if they fall for the tests.
Ingénieur en Sécurité at a tech vendor with 501-1,000 employees
Real User
Top 10
May 17, 2026
I use Gophish to run fake awareness campaigns with our clients. Everything is framed and I use the product to send emails, get reporting, and then present the results afterward. The objective of the campaign I carried out with Gophish was to determine the level of maturity of employees and staff. So the goal is to send an email to everyone and see the percentage of people who fall into the trap. We analyze the results of these campaigns by going back with the same data but for different companies to see whether the alerts are being followed.
Especialista em Cibersegurança at a security firm with 5,001-10,000 employees
Real User
Top 10
May 17, 2026
My main use case for Gophish is sending phishing emails. The main benefit of using Gophish in phishing campaigns is the monitoring panel because sending emails by other methods already exists through other tools. The ease of configuration and the visual feedback in the tool is what makes me want to use Gophish.
Senior Offensive Security Engineer at a computer software company with 1,001-5,000 employees
Real User
Top 10
May 16, 2026
My main use case for Gophish is red team engagements. During a red team engagement, we use Gophish to host the landing pages and send the emails for social engineering engagements. It tracks the progress of the social engineering engagement, including who has clicked what, who has entered what, and it also sends out the emails with custom templates for us.
IT Secur IT Y at a manufacturing company with 11-50 employees
Real User
Top 20
May 15, 2026
I am using Gophish for awareness training for my employees in my company. My main use case for Gophish is because it is easy to set up, easy to use, and very user-friendly.
Gophish is an open-source phishing toolkit aimed at simplifying the creation and execution of phishing campaigns for cybersecurity professionals.Designed to cater to organizations seeking to enhance their security awareness, Gophish offers a streamlined process for launching phishing simulations. It provides a customizable environment, allowing users to simulate real-world phishing scenarios efficiently. With its user-friendly interface, even those with limited technical skills can easily...
My main use case for Gophish is for penetration testing on cybersecurity with phishing links and others. We used Gophish to test the mindset of different users in the company. We used Gophish to send intrusion links and links by email, for example, links supposedly from sites they visit or related to their Facebook or Instagram account. We determined the number of people who clicked on the link, those who reported it before clicking on the link, and those who did not click on the link. It was a survey campaign that we conducted after an awareness session that we carried out with the different users of the company.
I have been using Gophish for a year. My main use case for Gophish is awareness campaigns for staff. A specific example of how I use Gophish in a campaign for staff is that I create fake internal-use pages and send them to collaborators' emails to see if they fall for the tests.
I use Gophish to run fake awareness campaigns with our clients. Everything is framed and I use the product to send emails, get reporting, and then present the results afterward. The objective of the campaign I carried out with Gophish was to determine the level of maturity of employees and staff. So the goal is to send an email to everyone and see the percentage of people who fall into the trap. We analyze the results of these campaigns by going back with the same data but for different companies to see whether the alerts are being followed.
My main use case for Gophish is sending phishing emails. The main benefit of using Gophish in phishing campaigns is the monitoring panel because sending emails by other methods already exists through other tools. The ease of configuration and the visual feedback in the tool is what makes me want to use Gophish.
My main use case for Gophish is red team engagements. During a red team engagement, we use Gophish to host the landing pages and send the emails for social engineering engagements. It tracks the progress of the social engineering engagement, including who has clicked what, who has entered what, and it also sends out the emails with custom templates for us.
I am using Gophish for awareness training for my employees in my company. My main use case for Gophish is because it is easy to set up, easy to use, and very user-friendly.