Back to Templates

Internal Phishing Simulation with OpenAI and Google Sheets for Security Training

Created by

Created by: Adnan Tariq || adnantariq

Adnan Tariq

Last update

Last update 5 days ago

Share


Description:

Simulate phishing awareness campaigns using OpenAI-generated emails. Send to target lists, log clicks with a webhook, and store results in Google Sheets. Built for internal testing and cyber awareness training.

Who’s it for:

  • Security teams conducting internal simulations
  • GRC teams doing phishing awareness
  • Red Teams wanting modular test setups

How it works / What it does:

  • Loads targets from Google Sheets
  • Uses OpenAI to write realistic phishing emails
  • Sends them via Gmail
  • Tracks who clicked via webhook
  • Logs actions in Sheets

Requirements:

  • Gmail or SMTP credentials
  • Google Sheets OAuth2
  • OpenAI API Key
  • Self-hosted webhook or tunnel for /phishlink tracking

How to customize:

  • Replace email template with your own LLM prompt
  • Swap Gmail for SendGrid, SES, etc.
  • Edit domain in tracking link
  • Use Cron or manual start